Hi, I need help to migrate my SEA and use Sophos XG FIrewall Email Protection as replacement.
Current Setting Inbound:
Internet (SEA WAN IP 222.2.3.69) -> SEA (in DMZ 172.16.1.3) -> Exchange Server (in LAN 192.168.1.1)
Outbound
Exchange Server (in LAN 192.168.1.1) -> SEA (in DMZ 172.16.1.1) -> Internet (SEA WAN IP 222.2.3.69)
Let say my by WAN configuration as below:
WAN IP for Sophos XG Firewall is 222.2.3.67
WAN IP for SEA is 222.2.3.69
WAN IP for Exchange Server is 222.2.3.70
If I enable MTA mode, would my Exchange Server become open relay? As when enable the MTA mode firewall will add ANY ->- ANY for smtp service.
I use route email to external through smarthost in exchange Exchange Server, current setting is SEA DMZ IP 172.16.1.3. If want retain this setting what IP should i use?
Any configuration document that I can refer to avoid my environment expose with open relay issue?
After enable MTA I saw few unknown hgs37ahjsg@mydomain.com send outbound email which I believe someone use to relay spam email. Need help!!!
This thread was automatically locked due to age.
