Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 39 subscribers
  • Views 3131 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG 19.5.2 MR2 MTA Mode SMTP Port 25 connection timed out - inbound to internal address

Mario Setubal

I have the oddest problem with my XG firewall. Everything works fine, with the exception of the MTA passing mail to the backend server.

MTA internal IP is 192.168.128.1 - Mail Internal IP is 192.168.128.12

The problem. Mail is stuck in the mail spool queue with status Failed (reason string = R=static_route_hostlist T=static_smtp defer (110): Connection timed out DT=15s)

when I delete the retry files - the smtpd-main.log file reports


9761 1 queue-runner process running
DBG May 25 07:56:39Z [ MPOLLER]: state failed 'No such file or directory'
9761 2 queue-runner processes running
2023-05-25 07:56:48.082Z [22028] 0llgyk-Y1wWLK-Os H=192.168.128.12 [192.168.128.12]:25 Connection timed out
DBG May 25 07:56:48Z [ MPOLLER]: Number of events: 1
DBG May 25 07:56:48Z [ MPOLLER]: poller_loop:calling handler, events = 1
DBG May 25 07:56:48Z [ MPOLLER]: handle_inotify_event: file received in msglog queue '0llgyk-Y1wWLK-Os'
DBG May 25 07:56:48Z [ MPOLLER]: Number of events: 1
DBG May 25 07:56:48Z [ MPOLLER]: poller_loop:calling handler, events = 1
2023-05-25 07:56:48.125Z [22026] 0llgyk-Y1wWLK-Os == mick@domain R=static_route_hostlist T=static_smtp defer (110): Connection timed out DT=15s
DBG May 25 07:56:48Z [ MPOLLER]: handle_inotify_event: file received in msglog queue '0llgyk-Y1wWLK-Os'
2023-05-25 07:56:48.241Z [22048] RC4Vvv-2Qu104-1p == mick@domain R=static_route_hostlist T=static_smtp defer (-54) DT=0.000s: retry time not reached for any host for 'domain'

I have removed the actual DOMAIN from the email address for obvious reasons, but everything else is unchanged.

now the weird thing - if I telnet from the terminal to the SMTP server - boom no issues

SFVH_SO01_SFOS 19.5.2 MR-2-Build624# telnet 192.168.128.12 25
Trying 192.168.128.12...
Connected to 192.168.128.12.
Escape character is '^]'.
220 DOMAIN ESMTP MailEnable Service, Version: 10.45-- ready at 05/25/23 08:59:34
mail from:me@domain
250 Requested mail action okay, completed

so with the above in mind, I am truly stuck on what is next. if I switch to legacy mode (proxy) all works fine and all mails gets passed via the firewall to the mailserver, switch back to MTA , default SMTP(S) rule is added and emails get stuck in the queue.

any help would be much appreciated.

Thanks,

Mario



This thread was automatically locked due to age.
Unfiltered HTML