Mastering Microsoft Exchange Server 2007 SP1

The two flavors of transport rules give you, the messaging administrator, the ability to define and automatically enforce messaging policies within your organization. In Exchange 2007, transport rules are enforced on the Hub Transport and Edge Transport roles. You create and manage them in both the Exchange Management Console and the Exchange Management Shell.

Although you use the same processes to create and manage the rules on both roles, the actual actions you can take, and the way the rules are stored, are different. Transport rules are very similar to mailbox rules, but they are applied at the server level to all traffic that goes through that server.

Like mailbox rules, transport rules have three parts:

Transport rules on a Hub Transport server are defined and stored in Active Directory; each Hub Transport server in the organization sees the entire set of defined rules and attempts to match them against all messages. This allows you to define a single, consistent set of message policies throughout your organization. You can define a total of 1,000 transport rules in your organization. That may seem like a lot, but in large enterprises, you often need hundreds of transport rules to fully define the automated policy restrictions required.

Since rules are stored in Active Directory, modifications to your transport rules are subject to your normal AD replication. Depending on your site topology, it may take some time before your current changes propagate fully throughout your organization.

Warning 

If you have legacy Exchange servers in your organization; they will not make use of your transport rules. If acting as bridgeheads, these servers may represent a significant loophole in your messaging policy enforcement. Likewise, legacy Exchange mailbox servers do not pass all messages through a Hub Transport server, so you may notice that some policies are not applied evenly until all mailboxes are on Exchange 2007 servers.

In contrast, transport rules for Edge Transport servers are defined on a per-server basis and stored in the local ADAM database on the Edge Transport server. Thus, while you have no propagation delays to worry about, you do have to manually maintain a consistent set of rules on your Edge Transport servers or have some interesting discrepancies to track down at a later date.

Tip 

If you have multiple Edge Transport servers, we recommend using an EMS script to manage your transport rule configurations. Not only can you easily reuse this script on each Edge Transport server to maintain consistency, but the script makes great documentation on what your current configuration is.

Selecting Conditions and Exceptions

Since conditions and exceptions are both involved in identifying whether a given message should be processed by the rule, it should be no surprise that they give you the same set of options.

Which options you get depends on whether you're creating the rule on a Hub Transport or Edge Transport server. The Exchange 2007 help files contain detailed descriptions of how each of these conditions and exceptions are defined and applied, but this should help you get an idea of what types of selection criteria you have available at your fingertips.

Hub Transport Conditions and Exceptions

You can select the following conditions on Hub Transport servers:

Edge Transport Conditions and Exceptions

You can select the following conditions on Edge Transport servers:

Note 

Several condition and exceptions allow you to specify text patterns, which Exchange will then attempt to match against the specified fields. These patterns are known as regular expressions; see the Exchange 2007 help topic "Regular Expressions in Transport Rules" for more details and examples.

Selecting Actions

As with conditions and exceptions, your choice of possible actions depends on whether you're creating the rule on a Hub Transport server or an Edge Transport server. The Exchange 2007 help files contain detailed descriptions of how each of these actions is defined and applied.

Hub Transport Actions

You can select the following actions on Hub Transport servers:

Note 

One disappointing lack in the Hub Transport transport rule actions is the ability to designate that a matching message must be delivered to a location in the destination mailbox. Such an action would be extremely useful in conjunction with the Managed Folders functionality described in Chapter 12, "Managing Folder Content;" it would allow the messaging administrators to automatically file certain messages (perhaps those with a specified classification) into known locations such as a managed custom folder.

Edge Transport Actions

You can select the following actions on Edge Transport servers:

Creating New Rules with the Exchange Management Console

To create a new transport rule on your HT servers using the EMC, launch the EMC. Navigate to Exchange Organization\Organization Configuration\Hub Transport in the left-hand pane, then select the Transport Rules tab in the middle pane. Click the New Transport Rule task in the pane on the right to start the New Transport Rule Wizard.

Figure 13.3 shows the Introduction screen of the wizard. Here you provide the name and optional description of the new rule, as well as select whether the rule will be enabled once it is created. The name field is required. Click Next to continue.

Figure 13.3: New Transport Rule Wizard Introduction screen

Figure 13.4 shows the Conditions screen. The default condition is Apply to Messages, which will match all messages. If you want to narrow down which messages will be affected, select the check boxes of one or more conditions; they will be added to the lower text field.

Figure 13.4: New Transport Rule Wizard Conditions screen

To fill in the values of the conditions, click on the underlined blue text fields and select the results from the selection dialogs that are opened. Once you are satisfied with the selections, click OK to close the selection dialogs. Click Next to continue.

Figure 13.5 shows the Actions screen. There are no default actions. Select the check boxes of one or more actions; they will be added to the lower text field.

Figure 13.5: New Transport Rule Wizard Actions screen

To fill in the values of the actions, click on the underlined blue text fields and select the results from the selection dialogs that are opened. Once you are satisfied with the selections, click OK to close the selection dialogs. Click Next to continue.

Figure 13.6 shows the Exceptions screen. There are no default exceptions. If you wish to create an exception, select the check boxes of one or more exceptions; they will be added to the lower text field.

Figure 13.6: New Transport Rule Wizard Exceptions screen

To fill in the values of the exceptions, click on the underlined blue text fields and select the results from the selection dialogs that are opened. Once you are satisfied with the selections, click OK to close the selection dialogs. Click Next to continue.

Figure 13.7 shows the Create Rule screen. This screen gives you a summary of the rule that will be created. If you are happy with it, click New to create the rule.

Figure 13.7: New Transport Rule Wizard Create Rule screen

The transport rule is now created in Active Directory and will be replicated to all HT servers in your organization. The results of the operation, including the EMS command line used to create the rule, will be shown on the Completion screen, as shown in Figure 13.8.

Figure 13.8: New Transport Rule Wizard Completion screen

To create a new transport rule on your ET server using the EMC, launch the EMC on your ET server. Follow the same steps as for creating a new HT transport rule.

Creating New Rules with the Exchange Management Shell

The following Exchange Management Shell commands let you add, change, remove, enable, or disable transport rules that are used by the Transport Rules agent on a Hub Transport server or an Edge Transport server:

Related

Категории