This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos UTM Home - Apple iCloud IMAP

Hello I have found different threads similar to this topic but with no specific answer.

I have Sophos UTM Home - ASG Software Firmware version: 9.713-19 Pattern version: 219285

and the problem that I have is that Icloud servers for outgoing email cannot be reached

I have added a web filter as follows

and an email rule in the firewall with the following services

for the firewall rule, I have added port 587 with no luck.

Any help would be appreciated. I really appreciate any help you can provide.



This thread was automatically locked due to age.
Parents
  • HI, can you post a line from the webfiltering log so we can see what's blocking the connection?

    Also have you tried allowing "SMTP" (source: Internal) in Application Control if it is enabled by any chance?

    Also I had a look at the service definitions and "SMTP SSL" has port 465 as the destination, but icloud requires port 587:

    SMTP information for the outgoing iCloud Mail server

    • Server name: smtp.mail.me.com
    • SSL Required: Yes
      If you see an error message when using SSL, try using TLS or STARTTLS instead.
    • Port: 587
    • SMTP Authentication Required: Yes
    • Username: Your full iCloud Mail email address (for example, johnappleseed@icloud.com, not johnappleseed)
    • Password: Use the app-specific password that you generated when you set up the incoming mail server.

    lEdit: I see your service definition says SMTPS, not SMTP so I assume you already created the service definition for that port 587.

  • Instead of using ANY for the destination in the firewall rule, should you create a DNS host definition for smtp.mail.me.com instead?

    Some other things, what does the firewall logs say?

    Also if you are using the standard mode web proxy, add SMTP/SMTPS to the allowed target services in Web Protection, filtering options, Misc, allowed target services.

Reply
  • Instead of using ANY for the destination in the firewall rule, should you create a DNS host definition for smtp.mail.me.com instead?

    Some other things, what does the firewall logs say?

    Also if you are using the standard mode web proxy, add SMTP/SMTPS to the allowed target services in Web Protection, filtering options, Misc, allowed target services.

Children
No Data