This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

remove header on smtp proxy

i've seen the option to remove headers from outbound emails

i would like to remove the header exposing the internal ip of the server. 

does anybody know what do i need to fill here : 

the server itself does not expose internal ip

thank you



This thread was automatically locked due to age.
Parents
  • Hello  ,

    Thank you for reaching out to the community, Please refer the steps below:

    Header Modifications

    SMTP header content of emails passing through Sophos UTM can be changed and/or deleted in Header Modifications.

    Add/delete a header:

    1. Click on the Plus icon.

      The Add Header Modification rule dialog opens.

    2. Select the requested Operation.
    3. Enter the Header name you want to change/delete.

      1-255 ASCII characters are allowed.

    4. If you add a header, enter the Value the new header should have.

      0-255 characters are allowed.

    5. On demand add a Comment.
    6. Click Save.

    7. Click Apply.

      Your settings will be saved.

      To edit or delete a header rule click on the concerning icons next to the rule.

    Thanks & Regards,
    _______________________________________________________________

    Vivek Jagad | Team Lead, Technical Support, Global Customer Experience

    Log a Support Case | Sophos Service Guide
    Best Practices – Support Case  | Security Advisories 
    Compare Sophos next-gen Firewall | Fortune Favors the prepared
    Sophos Community | Product Documentation | Sophos Techvids | SMS
    If a post solves your question please use the 'Verify Answer' button.

  • thank you, but i'm already there. my question is how do i locate the specific header i need to remove?

    is there a syntax i can "pull" from?

  • You're probably looking for the "Received:" Header.

    However note that this only affects headers up to the UTM, not the further path.
    The remote SMTP (i.e. outlook.office365.com) sees your IP of course and will happily log it for spam prevention.
    Also this might break mechanisms like SPF or DKIM if your certificate has been issued for an internal machine.

  • the goal is to hide the internal ip. the sophos adds the internal ip of the server to the header. maybe i can "lie" and try to do "public to internal" so that the sophos will think that the mail server comes from a public ip, but i don't like it. it's quite the manipulation. i'd much rather find the correct header to remove the internal ip for outbound emails

  • i think i got it.

    i did this

    the first row only added another "received from" at the bottom

    but mixed with the second one, it did the trick. now the internal ip of the server is invisible to the other side, only shows public. and yet passes spf/dkim/dmarc

Reply
  • i think i got it.

    i did this

    the first row only added another "received from" at the bottom

    but mixed with the second one, it did the trick. now the internal ip of the server is invisible to the other side, only shows public. and yet passes spf/dkim/dmarc

Children