Sophos Email customers using IP-based mailflow rule connectors must migrate to certificate-based configuration by March 31st. To see if you're affected Click Here.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Deploy Sophos Central Email Security with two mail servers

Hello everyone,

I have had the opportunity to implement Sophos Central Email Security in Mailflow and Gateway mode, always using only 1 mail server in office365 and exchange. However, I wonder how the implementation would be if I had a client who uses zimbra and also exchange or office365?

Thanks



This thread was automatically locked due to age.
  • Hi Gerardo,

    Thank you for reaching out to Sophos Community.

    I recommend contacting your Sophos Sales/AM for this kind of query to consider all the necessary information for your environment. 

    Erick Jan
    Community Support Engineer | Sophos Technical Support
    Sophos Support Videos Product Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.

  • It really isn't that complicated. Mail servers deliver messages via Host Records and MX records, so essentially in gateway mode you configure in your DNS record 

    mail.example.com

    MX 10 zimbra.example.com

    MX 10 exchange.example.com

    Now with this you won't know which server will get the incoming email. You could optionally change the weight for one server to say 100 and that would mean messages would go to the server with the setting of 10 unless it wasn't available. In the mail host below set mail.example.com and DNS will sort out the rest. In the below example I'm delivering everything to domain-mail.protection.outlook.com

    cemapm.com mail is handled by 10 mx-01-us-west-2.prod.hydra.sophos.com.

    cemapm.com mail is handled by 10 mx-02-us-west-2.prod.hydra.sophos.com.

    cemapm.com mail is handled by 100 cemapm-com.mail.protection.outlook.com.

    If I were going to deliver in a Hybrid fashion I would recommend deliver to the cloud and then have the cloud deliver to the on-premise mailboxes.

    Hope this helps.