Even though I have enabled the “Verify that local domain recipients exist in the Domino Directory” function on (2) replicating Notes servers, many bogus messages addressed to non-existent internal addresses are finding their way to legitimate addresses.
Example little@ABC.com is making its way to Jsmith@abc.com.
Other info:
One server is an R5, the other an R6. The R6 server is configured to receive all ABC.com domain messages, while the R5 server receives XYZ.com and 123.com mail.
The R6 (ABC.com) server seems to hold invalid messages within the server’s mailboxes, but somehow the fake messages that get through are via the R5 server (subsequently routed to the R6 server).
These messages are also making it past a Linux SpamAssasin appliance (ABC.com domain only at this point).
Is there something else which must be locked down here?
Thanks,
Charlie