Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG Email Protections - high amount of false positive Blacklist

we are currently seeing high amounts of false positive blacklist hits, although none of the IPs is actually blacklisted.

SFOS 18.0.4 MR-4

here are a few examples, of IPs which not blacklisted but got rejected.

194.56.219.38

194.56.219.33

94.100.136.174

83.144.254.184

2021-10-14 11:53:51.020 [31787] H=smtp2.iwb.ch (iwb10.iwb.ch) [194.56.219.38]:36248 I=[x.x.x.x]:25 X=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256 CV=no F=<xxxx@xxx> rejected RCPT <jonathan.kunz@xxxxxx Sophos Anti Spam Engine has blocked this Email because the sender IP Address is blacklisted.

any one else ?



This thread was automatically locked due to age.
Parents
  • Hello

    With which command and did you display the log?

    I have the same problem, but my customer wants me to send him a printout so he can see what he missed.

    And via the log view each e-mail has been delivered. Which is totally inconsistent, because under email logs many emails have been rejected because of anti-spam.

    Greetings

Reply
  • Hello

    With which command and did you display the log?

    I have the same problem, but my customer wants me to send him a printout so he can see what he missed.

    And via the log view each e-mail has been delivered. Which is totally inconsistent, because under email logs many emails have been rejected because of anti-spam.

    Greetings

Children
No Data