I was able to make it work using your advice and this article I found. http://msexchangeteam.com/archive/2006/12/28/432013.aspx
Get-ReceiveConnector "Connector Name" | Add-ADPermission -User "NT AUTHORITY\ANONYMOUS LOGON" -ExtendedRights "ms-Exch-SMTP-Accept-Any-Recipient" Until I issued this command from the Exchange Shell it would not work. Thanks for the help. Greg -----Original Message----- From: Sam Cayze [mailto:sam.ca...@rollouts.com] Sent: Thursday, March 19, 2009 3:04 PM To: MS-Exchange Admin Issues Subject: RE: SMTP server in DMZ Yep. To add: make sure you give it the IP of the internal address of your DMZ box. Don't open up a relay to the WAN. I would use authentication too, not annon, if possible. An IP can be spoofed. -----Original Message----- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Thursday, March 19, 2009 1:11 PM To: MS-Exchange Admin Issues Subject: Re: SMTP server in DMZ On Thu, Mar 19, 2009 at 11:36 AM, Lewin, Greg <le...@infimed.com> wrote: successfully send from the DMZ to the Exchange and deliver mail to my local > authoritative domain. When I try to actually (relay) deliver mail to > a remote domain I'm getting a unable to relay 550 5.7.1 error. You have to tell Exchange to allow anonymous relaying from the IP address of your DMZ box. -- Ben ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja ~ ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja ~ ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja ~