This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SEA mail logs for outbound emails

Hi!

I've develop migraine in finding solutions for almost a month now..

I noticed that the mails logs (sender column) does not record the outbound mails but the sender's from external like Gmail can be logged.  So basically there are email traffic for both incoming & outgoing mails.. Outbound mails are going directly to the internet instead of routing it to SEA first.

I tried to create smart host just to relay the traffic, outbound mail won't send out so i have to find another way.. So confused, i don't know if i needed to create connectors on the exchange server, what route should be done.

The SEA admin / user guide does not have a clear procedure on how to configure the complex environment for the outbound mail traffic.

reference:

esa.sophos.com/.../ConfigGuide.pdf

 



This thread was automatically locked due to age.
Parents Reply Children
  • Hi Md. Arfi Uddin

    I had a look at your video, steps 1 -3 seemed to be correct .. but step 4 is incorrect. 

    setting an address as a trusted relay affects the way the appliance does reverse lookups, IPs that are listed as trusted relays are also exempt from spam checking.  So By adding your mail server as a trusted relay, if you ever get an infected host / spam bot .. all mail would be blindly delivered to the internet. 

    Step 4 must be set up as an internal mail host, this tells the appliance what IP's it can accept a message from and relay.  The connector should be anonymous. 

     

    You may wish to refer to http://esa.sophos.com/docs/esa/webhelp/index.html#sea/references/trusted_relays.html

    and also note the differences with upstream and downstream relays. 

     

    Normally, the only time you should ever have a trusted relay is if something upstream is accepting mail and delivering downstream to an appliance.  Port Forwarding for example routes packets, it does not accept a message and then deliver said message, so a router would never be a trusted relay.

    If you had another email appliance, or a postfix server or similar upstream (or downstream delivering upstream) they would be listed as trusted relays.