Browse By Tags

  • SMTP e-mail with virus not checked when it is from the internal domain.

    When UTM9.x recieves a smtp e-mail and the sender adres is from the "internal" domain. UTM 9.x doesnt scan for virusses. even when it is send from outside the network it is passed to the mail server without checking. Just change in your email client…
  • User Portal Mail Log Doesn't Match Mail Manager

    Why is it that when a user logs into their User portal to see their mail log, some SPAM messages do not show up for them, but when I log into the admin portal and look at the mail log in the message manager I can see stuff for them that they don't? This…
  • block all Linkedin e-mails / UTM9

    Hello, my employer wants to block all e-mails from Linkedin. Under Email Protection > SMTP > Exception I added the address pattern *@linkedin.com but e-mails are still delivered to users inbox. How can I reliably block These Linkedin e-Mails? Help…
  • SMTPD not running properly since firmware update

    since firmware update to 9.400-9 i have had some issues with the SMTPD not running (6 alerts since update) which means mail doesn't even come into the UTM logs. I have rebooted and a flurry of mails come in, anyone else had issues?
  • Notification to sender if an email gets quarantined

    Hi everyone! Is there a way in UTM 9 to let the sender of an email know, that his email has been quarantined? For example if the email is blocked due to an "File Extension Filter", the sender should be notified, that his email has been blocked. …
  • Expression Filter - How to filter a spammer

    Spam from a particular spammer is getting through the Sophos UTM. The sender's email address is dynamic (0100015356a4719a-9e5954b8-d58b-4a0e-9381-740dc528d936-000000@amazonses.com) so using the blacklist is pointless. However, the sender always uses the…
  • SMTP authentication without backend authentication services

    I host internal mail server with self integrated authentication. There is no NTLM, RADIUS, LDAP or AD available in the infrastructure. The mail service is only support SMTP 25 and POP3 110 without encryption. While I enable the Mail Protection for SMTP…
  • Is it possible to scan Gmail incoming and outgoing emails?

    Hi all, our company uses a google apps account and our emails are looked after by gmail. Some of the users on the network use Mac Mail/Thunderbird (etc) for their email bits rather than using the web app. So... Is it possible to, and if so how do I…
  • Newbie hat Frage zu UTM SMTP Exchange

    Hallo, leider sind die meitens Einträge in diesem Forum in englischer Sprache. Ich habe mal grundsätzliche Fragen zur Einrichtung der MailSecurity UTM in Verbindung mit einem Exchange Server. Zur Zeit haben wir einen Exchange Server in der Domaine…
  • Howto use Extension blocking for Office documents the right way?

    Hi, due to current threads like Locky etc, we want to block all incoming Office documents by file extension. I've tested this with a simple BAT file which I've send to myself - of course from an external email domain. As expected it get's quaratined…
  • File extension blocking for incoming mails via SMTP only

    Hi everybody, due to the current security issues (e.g. Locky, Teslacrypt etc.) we want to block incoming mails with specified file types (e.g. xls, doc) and move them to quarantine first. While testing the File extension filter with the blocked file…
  • Best way to blacklist a (potentially large) number of IPs in SMTP profile

    My problem is rather simple: i would like a way to prevent a (potentially large) number of IPs to connect to the SMTP server. My first attempt was to create a "blackhole" network group in the firewall and all IPs there. This, unfortunately, does not…
  • How do route email to an end point after the Sophos XG Firewall?

    I see how to setup the system to scan smtp email, but I am unable to find a way to route it. I haven't seen a way to route email like in UTM 9.
  • SMTP Email Scanning KB configuration article

    I am trying to use this article to configure SMTP scanning and am having numerous issues following the prescribed steps. These range from not being able to select the added mail server CA (which has been mentioned elsewhere in this forum) and compulsory…
  • Where are smtp log in XG Firewall (in console shell mode)?

    Hi evebody, Where are smtp log in XG Firewall (in console shell mode)? There is no /var/log/smtp.log like UTM.
  • S/MIME Signatures invalid when e-mail has attachment

    Hi, I've done some searching on the forum, this problem ist discussed a few times but without any solution. So I give it a new try. On a Sophos UTM V 9.352-6 I want to sign/decrypt outgoing mails. I use a StartSSL Cert and all seems to be well configured…
  • Affect which IPv6 is used for outgoing mails

    Hello all, I have a problem with the IP address which is used for outgoing mails. We use the Email Protection with the simple mode proxy and inside our network there is an Exchange server. We have one WAN interface and no Uplink Balancing or Multipath…
  • Strict RDNS Check seems not to work correctly

    I am using Sophos UTM 9.352-6 and i recently had activated strict RDNS checks in email protection feature. So far this seems to work great and i pulls out lots of spam, but it seems not to work in each case. As for my unterstanding strict rdns check…
  • Why do some emails get logged in mail manager and some don't?

    Hi, We have a UTM320 v9 and our own mail server. When users call and tell me they think an email to them got stuck in quarantine or bounced back, my first step is to check the SMTP Log in the Mail Manager to see if it even made it here. But I sometimes…
  • UTM email anti spam setup

    Hello all, Could someone please help me please. lets assume this is my networks info ex01 - 192.168.0.15 (external ip 10.10.0.100) DNS: A > mail.test.com > 10.10.0.100 MX mail.test.com NAT rule on the on the UTM Any > outside ip (10.10…
  • How can I select a specific certificate to scan inbound E-mail trafic (SMTP) ?

    I was trying to create an inbound forward rule for my internal mail server. The problem is that I can't see where I should select a certificate for "Hosted Server". I tried creating a rule by using "Security Policies >> Add Business Rule" and selecting…
  • SPX Encryption not working for "local" addresses?

    ok brilliant Sophos forum people... maybe someone can help me faster than Sophos Support (they're working on it) ... I have a weird situation-- We have a hosted postfix/cyrus-based mail system hosted at AWS and utilizing UTM 9.3 for spam/AV filtering…
  • Email to admin when new firmware is ready, has been installed, needs a reboot or has installed and rebooted?

    Hi All, I have a UTM 9 virtual appliance I am using for a HTTPS proxy and I see there are two updates that require a reboot. Is there a way that the appliance can send me an email when it needs attention? I am trying to make sure my google business…