Thread Info
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Bounced emails in MTA?

Crazybeaver

Hi,

I'm using our Sophos XG210 as spam protection for around a week now, coming from Sophos Central email protection.

Everything works fine except for a few bounce mails. These emails are bouncing but I don't really know why, I haven't really found a way to dig any deeper too. I've already whitelisted the domains+IP's of the senders but they still get bounced.

Does anyone have a suggestion for me?



This thread was automatically locked due to age.
  • +1

    Hey  

    I would suggest taking a look at your awarrenmta.log on the CLI of your XG to find out more information regarding these bounces.

    Here's the KB to help you out.

    Regards,

    FloSupport | Community Support Engineer

    Florentino
    Director, Global Community & Digital Support
    Are you a Sophos Partner? | Product Documentation@SophosSupport | Sign up for SMS Alerts
    If a post solves your question, please use the 'Verify Answer' button.
    The Award-winning Home of Sophos Support Videos! - Visit Sophos Techvids
    • 0 in reply to FloSupport

      Thank you. Already openend a support case.

      Waiting for the output of the logs now after I receive new mails that bounce back.

      • 0 in reply to Crazybeaver

        This is what I can see in the log for one of the bounced e-mails.

        ADMIN Mar 23 10:52:21 [0xc00032f8]: SRC: * ,FROM: *, SUBJECT: *, MAIL_ID: *  Accepted by Device

        ADMIN Mar 23 10:52:26 [*]: [*] FROM = *, TO = *, SUBJECT = *, recv_time = Mar 23 10:52:21, size = 428657, status = Bounced,reason = SMTP Failure in DATA command.

        ADMIN Mar 23 10:52:26 [*]: [*][*] R=MX h=* SSL=0

        ADMIN Mar 23 10:52:26 [*]: [*] FROM = , TO = *, SUBJECT = Delivery Failure Notification, recv_time = Mar 23 10:52:26, size = 100778, status = Bounced,reason = Mail has been discarded from device after multiple failed delivery attempts., fwd_time = Mar 23 10:52:26

        *=hidden data

        • 0 in reply to Crazybeaver

          Fixed

           

          The Exchange server bounced the emails back to the Sophos, it was in the content filtering of the Exchange server.

      Unfiltered HTML