Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 4 replies
  • Subscribers 40 subscribers
  • Views 2923 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG Firewall is impersonating the whole subnet for port 25

John Felix Rodrin

Good day,

Currently we are doing network discovery, and we found that the whole subnet are answering to the ping discovery which is weird. Upon checking, the ip addresses that are not assigned are replying via port tcp 25. When we telnet it the "220 sophos esmtp ready" was reflected. Is this normal behavior?



This thread was automatically locked due to age.
Parents
  • 0

    Could you do a Packet Capture on the firewall and check, how the firewall response to this? 

    Check for the firewall rule. Do you use the SMTP MTA? Do you have the firewall rule in place for ANY to ANY Scan SMTP? 

    __________________________________________________________________________________________________________________

Reply
  • 0

    Could you do a Packet Capture on the firewall and check, how the firewall response to this? 

    Check for the firewall rule. Do you use the SMTP MTA? Do you have the firewall rule in place for ANY to ANY Scan SMTP? 

    __________________________________________________________________________________________________________________

Children
No Data
Unfiltered HTML