Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

  • Options for replacing an XG SFOS 18.5.1 with something that can send email reliably?

    I'm reaching the end of my ability to deal with my XG firewall. Came from a working UTM that expired. The XG just cannot/will not reliably relay email from internal servers to the internet. Messages keep hanging and Sophos tech support keeps deleting…
  • Sophos XG Email Protections - high amount of false positive Blacklist

    we are currently seeing high amounts of false positive blacklist hits, although none of the IPs is actually blacklisted. SFOS 18.0.4 MR-4 here are a few examples, of IPs which not blacklisted but got rejected. 194.56.219.38 194.56.219.33 …
  • Sophos XG und Spamhaus DROP List

    Hallo zusammen, wir haben bei der Präsentation einer OPNsense Firewall gesehen, das hier dynamische IP Blockierlisten von bekannten Schadservern eingebunden werden können und so der Zugriff auf diese IPs verboten ist. Kann die Spamhaus DROP Liste (…
  • SOPHOS XG is sending Junk/Spam email out

    i have XG125 (SFOS 18.5.1 MR-1-Build326), it is configured in MTA mode. email server is placed in LAN. from last four days i am continously seeing in sophos in logs that someone who is not from my domain is as sender and recepient is also random, in mail…
  • XG Email Block TLD

    Is there a way to block a TLD in email protection? For example I used "*@*.ru" in our UTM under Blacklisted Address Patterns, but do not see where to do this in XG. Thanks.
  • Allow email relay for internal and remote servers

    Hi, I need to allow some internal and remote servers which are connected through IPsec to be able to send emails through the XG firewall configured as MTA. I entered the servers' IP addresses under e-mail relay but it is not working and showing a message…
  • Firewall Rule "mail content scan" - Mail filter policys

    Hi there, i use XG 18mr4 and have a troubleshoot question i cant find in documentation. if you create/modify a firewall rule, at the bottom you find "mail content scan". Does this depend or activate on the mail filter policys i can configure seperatly…
  • XG Email Walkthrough

    Hi I was wondering if anyone can walk me through setting up my XG106 Email Protection. I currently have most of my emails from my ISP and 1 outlook email and 1 Gmail account, but most will go through my Office 365 Outlook App via OSX. Cheers
  • DROP Rule Doesn't Work - Trying Block IP Proxy SPAM

    I created a rule (I put it on top) that drops a given list of Ips. The problem is that I continue and receive emails, which despite being rejected, should not even reach that point. I know that all those emails are from the same IP that counts in the…
  • Strange XG 18 Mail Log Entries

    I don't understand the two entries below: 1) mschravenriemer@yahoo.de (whe dont'know who is) send a message dropped by firewall (nothing strange). 2) firewall@ourdomain.it send a message to mschravenriemer@yahoo.de with subject malware detected. This…
  • IDN Domain-Names in E-Mail Protection

    Hi, i want to add a domain with a german umlaut (ü) to e-mail protection in Sophos XG Firewall. However this results in an error: I'm still using SFOS 17.5.9, anyone can tell me if this is fixed in SFOS 18?
  • How to block certain countries in Sophos XG MTA v18.0.1

    Hey there, I want to block certain countries to send emails to our mailserver. In a previous SFOS version, there was the possibility to block ip addresses unter PROTECT - Email - General Settings in the section "Blocked Senders". Now we use SFOS v18…
  • Email > Mail Logs won't load

    Hi! I recently set up our Sophos XG Firewall, and everything is working beautifully! However, today we've run into an issue with the "Mail Logs" within Protect > Email. Previously we used to be able to go into that tab, and it'd tell us every email…
  • E-Mails with specific attachments in quarantaine?

    We are using the function in our current Firewall that moves external E-Mails with a specific attachments into the quarantaine. It prevents the User from accidentality clicking on a attachment probably infected with ransomware. Now we are looking for…
  • Remove SMTP Headers in MTA Mode

    In UTM, I was able to remove certain SMTP headers from outbound emails, but I can't find the same setting in XG. Can anybody point me in the right direction? Many thanks
  • Email Policies & Exceptions File Protection

    When selecting the "Compressed Files" selection to filter attachments from email, the system erroneously filters out winmail.dat mime type Application/MS-TNEF files. winmail.dat is used by senders using Rich Text Format mail? The Application/MS-TNEF…
  • Greylisting problems

    Hey, what is bothering me a lot is that Greylisting is not working. That feature does help with Spam but it is not helpful when the mails arrive sometimes half-a-day or even 4 days later. Also when any mail goes through exactly that constellation of…
  • SPAM E-Mail Protection

    Hi, I have sophos XG 430 with 17.0.8 MR firmware. I am getting spam mails through Domain like gmail and yahoo.Please suggest how to stop this.
  • How to setup SPX encryption in v17.xx?

    Hi everyone, I'm using Outlook 2016 and 2013 and XG Firewall in Legacy Mode. I would like to be able to encrypt e-mails using SPX. I tried to do it as described in KB community.sophos.com/.../123114 , but unfortunately after clicking "encrypt" and …
  • how to stop SMTP Open Relay

    Hi Team, I need help to stop the SMTP open Relay on Sophos XG Firewal.. I have installed zimbra mail server and nated public ip through Sophos XG firewall and it is working but now some one using my smtp server to send emails as smtp open relay is…
  • MTA mode Configuration in XG135

    As we followed Sophos document to config MTA mode, - Same domain transfer is ok. - Email send from LAN to WAN is ok - can't receive any inbound email from other domain (sender received email: 550 Relay access denied) Our Email server is under…
  • Bellsouth and Att Emails error with Destination Unreachable

    When sending from our Organization to bellsouth.net and att.net email addresses the mail stops in the firewall and has an error of destination unreachable. It stays there for several days before finally not delivering. Bellsouth can email to us just fine…
  • Sophos xg sending case sensitive emails

    So this is something that should not ever be an issue and I am having trouble believing that this could be an issue, yet here we are. we have recently changed from legacy "smtp deployment mode" to "Device acts as a Mail Transfer Agent (MTA)." on our…
  • Email Protection Best Practice

    Hi community, after playing with the settings I think spam filtering works pretty good right now on our XGv17 and I'd like to discuss the settings and set up something like a best practice. Especially the list of RBL services could be expanded. Currently…
  • Difference between "Check for RBL" and "Verify Sender’s IP Reputation"?

    What's the exact difference between them both (in MTA mode)? Email > Policies > $policy > Spam Protection > Check for RBL Email > General Settings > SMTP Settings > Verify Sender’s IP Reputation From my understandig, both check the IP…