Outbound Connection Limit per Domain Count is not 100 or less.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-18691 | EMG2-120 Exch2K3 | SV-20322r1_rule | ECSC-1 | Low |
| Description |
|---|
| E-Mail system availability depends in part on best practices strategies for setting tuning configurations. This configuration controls the maximum number of simultaneous outbound connections from a domain, and works in conjunction with the Maximum Outbound Connections Count setting as a delivery tuning mechanism. If the limit is too low, connections may be dropped. If too high, some domains may use a disproportionate resource share, denying access to other domains. Appropriate tuning reduces risk of data delay or loss. By default, a limit of 100 simultaneous outbound connections from a domain should be sufficient. The value may be adjusted downward if justified by local site conditions. |
| STIG | Date |
|---|---|
| Microsoft Exchange Server 2003 | 2014-08-19 |
Details
| Check Text ( C-22409r1_chk ) |
|---|
| Access the mail server Outbound Connection configuration. Procedure: Exchange System Manager >> Administrative Groups >> [administrative group] >> Servers >> [Server] >> Protocols >> SMTP >> [specific SMTP server] >> Properties >> Delivery tab >> Outbound Connections button. The “Outbound Connections per Domain Count” should be = 100 or less. Criteria: If "Outbound connections per domain count" is 100 or less, this is not a finding. |
| Fix Text (F-19337r1_fix) |
|---|
| Set the Outbound Connections per Domain Count. Procedure: Exchange System Manager >> Administrative Groups >> [administrative group] >> Servers >> [Server] >> Protocols >> SMTP >> [specific SMTP server] >> Properties >> Delivery tab >> Outbound Connections button. Enter Outbound Connections per Domain Count = 100 or less. |