Exchange SMTP Protocol Logging Reviewer · microsoft/CSS-Exchange#891

(0 comments) (0 reactions) (0 assignees)PowerShell (985 stars) (234 forks)batch import

Low PriorityNew Tool Requesthelp wanted

Description

Is your request related to a problem? Please describe. It is hard to follow the flow of the protocol logging and call out possible issues.

Describe The Request Create a new script that is able to assist with SMTP protocol logging review.

Key points to included:

Generic review of the log to find any issues like sessions being started but never used
Following a single message from start to finish hopping between servers
- Call out possible logs missing for full review
Call out large time gaps between entries - Example: BDAT sending 700 bytes the next entry is a session closed 5 minutes later.
Able to run on Exchange - Made easier to hop between servers following a message due to EMS
Able to run on Engineer computer who collected the logs for off-site review
If entire message is found and delivered, do a report that includes time stamps and flow of the message

Tech stack: shell
Domain: observabilitytooling
Issue type: feature
Difficulty: 3
Estimated time: 3-5 days
Activity status: stale
Clarity: clear
Prerequisites: Exchange SMTP logging familiarityPowerShell scriptingLog analysis concepts
Newbie friendliness: 50
Research direction: Examine existing log parsing tools in the repository. Understand the format of Exchange SMTP protocol logs (typically text files). Create a script that can scan logs for anomalies like abandoned sessions, track message flow across multiple servers, and detect large time gaps. Consider adding options for reporting and exporting results.