If you're running Exchange 2000, then the only option you have
out-of-the-box is to disable NDRs entirely, which may not be a desirable
alternative.
In Exchange 2003 (starting with SP1 I believe) you can do the following:
- Launch Exchange System Manager.
- Drill down to Global Settings.
- Right-click on Message Delivery and select Properties.
- Click on the Recipient Filtering tab.
- At the bottom of the page, check the "Filter recipients who are not in the
Directory" box and click OK.
Now you need to apply this filter to any relevant SMTP virtual servers:
- Drill down to Servers -> Server Name -> Protocols -> SMTP
- Right-click on Default SMTP Virtual Server and select Properties.
- Click on the Advanced button next to the IP Address field on the General
tab.
- Does "Filter Enabled" say "Yes" underneath it? If not (or to check what
filtering is being applied) select the IP Address in the list and click
Edit.
- Check the "Apply Recipient Filter" box.
- Keep clicking OK until you're backed out of any configuration windows.
- Restart the SMTP service.
Basically you're creating a recipient filter, then you need to apply that
filter to any SMTP virtual servers or interfaces.
In Exchange 2007 I don't know--it requires 64-bit hardware and we haven't
had the need to buy a new server yet.
One thing to keep in mind is that spammers will sometimes perform "directory
harvest" attacks on mail servers, essentially flooding the server with RCPT
TO commands to determine which addresses exist and which don't. Because of
this it is recommended to enable "tarpitting" of SMTP connections if you
enable this recipient filter. Henrik Walther has a great article about
tarpitting here:
http://www.msexchange.org/tutorials/Windows-based-SMTP-Tar-Pitting-Explained.html
Joe