Configuring VPN Remote Access for the first time on your Sophos XG Firewall? Check out this useful Community post!
Advisory: Sophos XG Firewall - Antivirus service stopped due to failed pattern update. Please visit this KBA for the latest updates
We'd love to hear about it! Click here to go to the product suggestion community
Today i upgraded my XG 17.5.9 to XG 18.0.0. Optimized and cleaned up all the migration rules.
Now everything seems to work fine except for one thing. The mailserver i am using cannot connect to a relay host on port 587.The message it returns in the log is "Status: 5.7.0 538 5.7.11 Encryption required. Please reconnect with TLS enabled."
I've checked the knowledge base but am not able to resolve this.Hope anyone has any ideas to help me.
sounds like your mail server has tls as an option or disabled, try with starttls enabled.
In reply to rfcat_vk:
Thank you for replying. No, both SSL/TSL and STARTTSL are enabled.
The thing is it works when i revert back to XG 17.5.9...
In reply to Peter-Paul Gras:
Please post the firewall rule and what the logviewer mail report shows.
Peter, from advanced shell,
check in the following files:
smtpd_error.log smtpd_main.log smtpd_panic.log awarrensmtp.log
if you find something useful.
Hi Peter-Paul Gras
Please run command from console: console> show service-param and PM me the output.
Also double check to see if adding your relay mail server to the "skip TLS" list to see if that helps.
If all else fails, I would suggest to open a support request if you have a valid license and are not a home user.
In reply to KingChris:
what was the fix for this issue?
Please let the community know. Thanks
I added the mailserver to the TLS exception list.(added a new fw rule to scan HTTP/HTTPS traffic from this server using proxy HTTPS scanning)
Everything working as expected. Thank you all for your ideas and help, much appreciated!