can't scan to email from copier

I have a red 50 setup in standard/split mode and when I try to scan to email from a minolta bizhub c284 coper it fails. It just gives a general error. I check the network settings and it gets an ip and everything. When I go to the admin mode and trying to ping 8.8.8.8 from the copier it immediately fails. I can get it to work in transparent/split mode but then I can't access the server on the other end of the tunnel. I'm sure I have some setting wrong but I can't figure out which one. Some assistance would be greatly appreciated. 

  • Hi Ben.  I'm a little rusty on how these multi functional devices work.  Where is the copier trying to send the e-mail when it does a scan?  On premise mail server?


    Tim

  • In reply to TimHansen:

    No its gmail. We have even tried microsoft hosted email services but still not luck. Both work as long as the red it in transparent/split mode. Im not against running transparent/split as long as it can connect to the server at the other end of the tunnel. If I run it in standard/split neither work. I have checked the firewall log and I see blocking of the copier.

  • In reply to BenjaminRamezan:

    Odd.  Is the RED inline with the ISP equipment (standard/split)?  Is the copier's default gateway the RED?  Can you copy/paste a sample of the packet filter log showing the block?  Likely it just needs a firewall rule.  

    Tim

  • In reply to TimHansen:

    It has been a few months since I have worked on this and that office is over 3 hrs away. Is it possible to use transparent/split and still see the server on the other end? If so that would be the easiest since i know the copier works that way.

  • In reply to BenjaminRamezan:

    If the copier works in transparent/split, I'm going to guess that the copier's gateway is not the RED.  Reference https://community.sophos.com/kb/en-us/116573.

    Which server are you talking about and could you define "see"?  Can you verify what the entry looks like in the packet filter log when it's being blocked?

    Tim

  • In reply to TimHansen:

    Okay so internally the copier works and gets an ip from the red 50. The only issue is the scan to email. I look at the live firewall log and never see the ip of the copier getting blocked. The only reason I havent sent the log is because that log doesnt exist from 2 months ago. As for the server. Sorry I forgot to mention but it holds the data that gets shared between the 2 offices. When setup in transparent/split i can not longer see that server. My setup is below for the red tunnel in transparent/split. Also correct me if im wrong but in standard/spit a firewall rule should only be needed if the traffic will be flowing through the UTM?

     

  • In reply to BenjaminRamezan:

    "...but in standard/spit a firewall rule should only be needed if the traffic will be flowing through the UTM?"

    Correct. 

    Okay, so I think the best thing to do would be to ask someone at that office to test the scan to e-mail function in order to produce fresh logs.  Based on the logs we can take a look at your firewall rules to see what's missing.  How is that server accessed, SMB (tcp 445)?

    Tim

  • In reply to BenjaminRamezan:

    Benjamin, do you get any insight from doing #1 in Rulz?

    Cheers - Bob

  • In reply to BAlfson:

    I still wasnt able to get the scan to email working in standard/split. I checked firewall live log but it showed nothing getting blocked. I have however gotten transparent/split to work with now having access to the server at the other end of the tunnel.