Sophos Email customers using IP-based mailflow rule connectors must migrate to certificate-based configuration by March 31st. To see if you're affected Click Here.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 2 answers
  • Subscribers 17 subscribers
  • Views 2054 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Deploy Sophos Central Email Security with two mail servers

gerardo josic rodriguez paredes

Hello everyone,

I have had the opportunity to implement Sophos Central Email Security in Mailflow and Gateway mode, always using only 1 mail server in office365 and exchange. However, I wonder how the implementation would be if I had a client who uses zimbra and also exchange or office365?

Thanks



This thread was automatically locked due to age.
Parents
  • 0

    It really isn't that complicated. Mail servers deliver messages via Host Records and MX records, so essentially in gateway mode you configure in your DNS record 

    mail.example.com

    MX 10 zimbra.example.com

    MX 10 exchange.example.com

    Now with this you won't know which server will get the incoming email. You could optionally change the weight for one server to say 100 and that would mean messages would go to the server with the setting of 10 unless it wasn't available. In the mail host below set mail.example.com and DNS will sort out the rest. In the below example I'm delivering everything to domain-mail.protection.outlook.com

    cemapm.com mail is handled by 10 mx-01-us-west-2.prod.hydra.sophos.com.

    cemapm.com mail is handled by 10 mx-02-us-west-2.prod.hydra.sophos.com.

    cemapm.com mail is handled by 100 cemapm-com.mail.protection.outlook.com.

    If I were going to deliver in a Hybrid fashion I would recommend deliver to the cloud and then have the cloud deliver to the on-premise mailboxes.

    Hope this helps.

Reply
  • 0

    It really isn't that complicated. Mail servers deliver messages via Host Records and MX records, so essentially in gateway mode you configure in your DNS record 

    mail.example.com

    MX 10 zimbra.example.com

    MX 10 exchange.example.com

    Now with this you won't know which server will get the incoming email. You could optionally change the weight for one server to say 100 and that would mean messages would go to the server with the setting of 10 unless it wasn't available. In the mail host below set mail.example.com and DNS will sort out the rest. In the below example I'm delivering everything to domain-mail.protection.outlook.com

    cemapm.com mail is handled by 10 mx-01-us-west-2.prod.hydra.sophos.com.

    cemapm.com mail is handled by 10 mx-02-us-west-2.prod.hydra.sophos.com.

    cemapm.com mail is handled by 100 cemapm-com.mail.protection.outlook.com.

    If I were going to deliver in a Hybrid fashion I would recommend deliver to the cloud and then have the cloud deliver to the on-premise mailboxes.

    Hope this helps.

Children
No Data
Unfiltered HTML