Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 41 subscribers
  • Views 2068 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Firewall in MTA mode not sending out mails - chapter 2

twister5800

Hi,

Regarding this:

Firewall in MTA mode not sending out mails - Discussions - Sophos Firewall - Sophos Community

It's still as issue! - Running SFOS 19.5

Running "perl replace_firewall_id.pl 15 1" (I could see in the SMTP logs that it used rule 15 - that rule is my deafault drop rule - it happened out of the blue.

Any news on that matter?



This thread was automatically locked due to age.
  • 0

    Do you have the default MTA Rule or not? 

    If you enable the MTA Rule, there will be a firewall rule generated. You can adjust this rule, but you should not delete it. 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni

    I deleted it a long time ago.

    Today I switched SMTP between transparent and MTA, it recreated the rule as ID 1 and at the top, but did not fix the firewall-id in the SMTP, maybe that should be implemented?

    It was kinda hard to fix, not knowing why emails got blocked, with the SMTP rule in place :-)

    -----

    Best regards
    Martin

    Sophos XGS 2100 @ Home | Sophos v20 Technician

  • 0 in reply to twister5800

    Any news regarding my question above?

    Today I disabled the SMTP rule, thus enabled is right after (Not deleted) , SMTP mail flow was again broken. had to run the "perl replace_firewall_id.pl 15 1" again, cause the SMTP related to drop rul again. This is not good.

    Any news on a solution?

    -----

    Best regards
    Martin

    Sophos XGS 2100 @ Home | Sophos v20 Technician

  • 0 in reply to twister5800

    Essentially you need this rule for the exim to have a valid rule to send out. You could keep the rule and limit it to your mail server. Does this work for you? 

    __________________________________________________________________________________________________________________

Unfiltered HTML