We have observed that when people with Exchange 2007+ use Out of Office, mails get bounced by BATV.
Scenario is as follows:
Sophos UTM 9.265-8 (Beta) and 9.208-8 are tested...
I send email to our Exchange, Our Exchange sends mail through Sophos UTM with BATV activated, mail gets into our customers mailbox (Different location, server and spamfilter), he has OOO activated and sends reply back, the log shows this and I never get that the message was bounced:
2014:10:21-10:19:34 fw01 exim-out[2637]: 2014-10-21 10:19:34 1XgUfF-0000gE-IX => viggodk@***.dk P= R=dnslookup T=remote_smtp H=mailfilter01.***.dk [***.***.***.***]:25 X=TLSv1.1[[:D]]HE-RSA-AES256-SHA:256 C="250 OK id=1XgUfF-0003Rt-39"
2014:10:21-10:19:34 fw01 exim-out[2637]: 2014-10-21 10:19:34 1XgUfF-0000gE-IX Completed
2014:10:21-10:19:38 fw01 exim-in[4917]: 2014-10-21 10:19:38 SMTP connection from [***.***.***.***]:28334 (TCP/IP connection count = 1)
2014:10:21-10:19:38 fw01 exim-in[2645]: 2014-10-21 10:19:38 H=mailfilter01.***.dk [***.***.***.***]:28334 Warning: ***.dk profile excludes greylisting: Skipping greylisting for this message
2014:10:21-10:19:38 fw01 exim-in[2645]: 2014-10-21 10:19:38 [***.***.***.***] F=<> R= Verifying recipient address in Active Directory
2014:10:21-10:19:38 fw01 exim-in[2645]: 2014-10-21 10:19:38 [***.***.***.***] F=<> R= Accepted: is a bounce
2014:10:21-10:19:38 fw01 exim-in[2645]: 2014-10-21 10:19:38 1XgUfK-0000gf-1R ctasd reports 'Unknown' RefID:str=0001.0A0B0208.5446171A.018C:SCFSTAT19486215,ss=1,re=-4.000,recu=0.000,reip=0.000,cl=1,cld=1,fgs=0
2014:10:21-10:19:38 fw01 exim-in[2645]: 2014-10-21 10:19:38 1XgUfK-0000gf-1R <> H=mailfilter01.***.dk [***.***.***.***]:28334 P=esmtps X=TLSv1.1[[:D]]HE-RSA-AES256-SHA:256 S=3402 id=43d9cbc0485f436597fbe06007b5ab72@MAIL02.***.DK
2014:10:21-10:19:38 fw01 exim-in[2645]: 2014-10-21 10:19:38 SMTP connection from mailfilter01.***.dk [***.***.***.***]:28334 closed by QUIT
I know that the Exchange server strips the BATV tags, because it creates an entirely new mail with OOO.
If I disable BATV the mail get's through...
This thread was automatically locked due to age.