This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Exchange Mail stuck in Spool, using smarthost

Hello,

I hope someone can help me with my outgoing email.
A few days ago I started using a Sophos UTM 9.2 as new Firewall.
Reveicing emails works fine, but sending won't work.

Before using the Firewall Exchange sends email through an Smarthost (Domainfactory) - this worked always very good.

Now I configured the UTM as a smarthost for sending emails in Exchange.
So what I want to do is to send Emails from Exchange to the UTM as smarthost. From here they should be sended to the domainfactory smarthost. Bit they stay forever in spool. This is the log-entry I got:

2014-09-16 10:06:00 Remote host smtprelaypool.ispgateway.de [80.67.29.4] closed connection in response to initial connection
2014-09-16 10:06:00 ***@*** R=smarthost_route T=smarthost_smtp defer (-18): Remote host smtprelaypool.ispgateway.de [80.67.29.4] closed connection in response to initial connection

Maybe the following information is helpful:

Mails beeing in SMTP-Spool seem to get Virus-checked twice. They show the both the footer for incoming and for outgoing scan.

I've checked the settings for the external smarthost a lot of times. It is correct.

As a Workaround I tried to use the old smarthost in Exchange, sending mail direct from exchange to the external smarthost. This doesn't seem to work as well. The UTM blocks traffic on port 465 regardless of my Firewall Settings.

Any help is appreciated, I'm getting crazy because I can't send any mail...

My configuration for SMTP:
Global: simple
Domains: all accepted
Hostlist: Mailserver (Exchange)
Verify recipients: with callout
Antivirus: Default
Advanced anti-spam Features: Disabled for testing
Data Protection: Default
Exceptions: None
Upstream Hosts/Network: External MX
Authenticated relay: allow
Host-based relay: Mailserver (Exchange)
Advanced: Use a smarthost (with authentication)


This thread was automatically locked due to age.
Parents
  • I know this is a somewhat old thread, but I am new to Sophos UTM 9.  I'm in the process of setting up my e-mail protection settings, specifically under the SMTP > Advanced then down to Smart-host Settings.  Unlike the SMTP profile in the notification settings, TLS/SSL is not an option you can choose for the SMTP smarthost here in this section.  My ISP restricts outbound ports and requires TLS/SSL in order to authenticate and relay outbound mail.  Simply changing the host and the port with my credentials is not enough to get the SMTP smart-host working.  Does anyone have a workaround for this?  Or is there somewhere I can submit a feature request for this functionality?  I'm sure I'm not the only one who has a use for this feature.  

  • Hi, Joe, and welcome to the UTM Community!

    The SMTP Proxy should try to negotiate that with the ISP's smart host.  What are you seeing when you say it doesn't work?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • The smarthost option only allows you to customize the port, it does not allow authentication or explicit TLS/SSL settings.  My smarthost requires authentication so I'm basically unable to use the smarthost.  

  • What explicit TLS/SSL settings do you need?

    Authentication is configured in the box directly below the other smart host settings at the bottom of the 'Advanced' tab.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • What explicit TLS/SSL settings do you need?

    Authentication is configured in the box directly below the other smart host settings at the bottom of the 'Advanced' tab.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data