-
Products
-
SonicPlatform
SonicPlatform is the cybersecurity platform purpose-built for MSPs, making managing complex security environments among multiple tenants easy and streamlined.
Discover More
-
-
Solutions
-
Federal
Protect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
Learn MoreFederalProtect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
Learn More - Industries
- Use Cases
-
-
Partners
-
Partner Portal
Access to deal registration, MDF, sales and marketing tools, training and more
Learn MorePartner PortalAccess to deal registration, MDF, sales and marketing tools, training and more
Learn More - SonicWall Partners
- Partner Resources
-
-
Support
-
Support Portal
Find answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
Learn MoreSupport PortalFind answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
Learn More - Support
- Resources
- Capture Labs
-
- Company
- Contact Us
Installing Email Security Software on Exchange Server
03/26/2020 
7 People found this article helpful
482,174 Views
Description
This article goes through the steps of installing SonicWall Email Security Software on an Exchange server. This is not a recommended configuration.
Resolution
CAUTION: Installing ES Software on an Exchange server is not recommended
CAUTION: Exchange uses all available resources and may impact Email Security performance.
CAUTION: Email Security Software initiates constant disk input/output and may affect overall server performance.
CAUTION: Troubleshooting Email Security may require rebooting the server.
CAUTION: Java can never be updated once the Email Security Software has been installed.
On Exchange, configure a receive connector to listen on port 25 to allow Exchange to receive email messages from the Email Security Software.
On Exchange, configure a send connector to smarthost to port 2525 to allow Exchange to send email messages back to the Email Security Software.
NOTE: For Exchange 2016, follow this link for instructions on configuring an alternate port
https://www.authsmtp.com/exchange-2016/exchange2016_alternative_port.html
On the Firewall, configure 2 NAT policies
- Inbound NAT policy to translate port 25 to port 2525 and push to a dual natured server.
- Outbound NAT policy to translate port 2525 to port 25 (may not be needed).
Disable User Access Control on the Windows server.
NOTE: If using Windows 2016, disabling UAC requires a registry edit.
http://original-network.com/script-to-disable-uac-server-on-windows-server-2016/
Disable all AV and endpoint security (firewall, AV, anti-malware, anything that does scanning).
Uninstall all Java.
Reboot the server.
Install software as administrator.
For the inbound path, configure SES to listen on port 2525, and to forward on email to port 25.
Configure HTTP access to port 8088 and HTTPS to 4553 on the server. This will allow access without interfering with normal exchange traffic by using unregistered but similar ports.
NOTE: If you have AV software, the entire sonicwallES folder must be excluded from any form of virus scanning.
NOTE: If you have any firewall software, make sure that traffic to DMZ, LAN or where SES is located allows for 2525, 4553, and 8088 connections.
Related Articles
- Email Security: Convert a .cer format SSL Certificate to .pem for TLS
- How to set up your MX record after you activated Email Security Hosted Solution
- Email Security: How to troubleshoot NDR's.
YES
NO