This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Issues setting up SMTP Proxy

Sophos UTM Home Edition 9.113-1

UTM local IP address 192.168.0.1
email server local IP address 192.168.0.129

1. The Quarantine Report fails to be sent. Instead, I get the following email from
[SIZE=2]Mail Delivery System [SIZE=2][SIZE=2]Mailer-Daemon@gateway.mysite.com[/SIZE][/SIZE][SIZE=2]>[/SIZE]:

...
[FONT=Courier New][SIZE=2]This message was created automatically by the SMTP relay on gateway.mysite.com[/SIZE][/FONT][FONT=Courier New].

A message that you sent could not be delivered to all of its recipients.
The following address(es) failed:

  jeff@mysite.net[/FONT]
[FONT=Courier New]     SMTP error from remote mail server after RCPT TO:[FONT=Courier New]jeff@mysite.net[/FONT][FONT=Courier New]>:
    host 192.168.0.129 [192.168.0.129]: 530 SMTP authentication is required.

------ This is a copy of the message, including all the headers. ------

Return-path: gateway@mysite.com[/FONT][FONT=Courier New]>
Received: from MailerDaemon (helo[/FONT][FONT=Courier New]=spam.report)
    by gateway.mysite.com with local-bsmtp (Exim[/FONT][FONT=Courier New] 4.76)
    (envelope-from gateway@mysite.com[/FONT][FONT=Courier New]>)
    id 1Y2R84-00063r-11
    for jeff@mysite.net[/FONT][FONT=Courier New]; Sat, 20 Dec 2014 16:00:00 -0500
From: gateway@mysite.com[/FONT]
[FONT=Courier New] To: [/FONT][FONT=Courier New]jeff@mysite.net[/FONT]
[FONT=Courier New] Subject: Quarantine Report for [/FONT][FONT=Courier New]jeff@mysite.net[/FONT]
[FONT=Courier New] Date: Sat, 20 Dec 2014 16:00:00 -0500
MIME-Version: 1.0
Content-Type: [/FONT][FONT=Courier New]multipart/related; boundary="1419109200.5Ad0880.23301"; charset="utf[/FONT][FONT=Courier New][SIZE=2]-8"
Message-Id: E1Y2R84-00063r-11@gateway.mysite.com>[/SIZE][/FONT]
[FONT=Courier New]
[/FONT]
[FONT=Courier New]***lots of base64 email content***[/FONT]
[SIZE=2]...[/SIZE]

My email server requires authentication to send mail from every IP address except 127.0.0.1. but has never prompted for authentication to receive email until I started using the proxy. Why does authentication need to take place for Sophos to send the Quarantine Report? I already have authentication credentials set under Management->Notifications->Advanced.

2. What is transparent mode? When enabled, I do not receive any emails. I thought this setting would allow the proxy to forward received emails to the internal email server with the original headers/DNS/IP address of the sender instead of using 192.168.0.1 and domain name of UTM.

This thread was automatically locked due to age.

Parents

0 Jeff x over 9 years ago
Found another issue. I can send emails from the LAN to external but I'm no longer able to send emails from my mobile devices when I'm external. My mail client says there's no way to authenticate. I've tried ports 465 and 587. The SMTP Proxy log entries:

2014:12:30-14:30:55 gateway exim-in[4703]: 2014-12-30 14:30:55 SMTP connection from [66.87.82.190]:16449 (TCP/IP connection count = 1)

2014:12:30-14:30:55 gateway exim-in[31991]: 2014-12-30 14:30:55 SMTP connection from (190-186-108-29.pools.spcsdns.net) [66.87.82.190]:16449 closed by QUIT

2014:12:30-14:30:55 gateway exim-in[4703]: 2014-12-30 14:30:55 SMTP connection from [66.87.82.190]:12458 (TCP/IP connection count = 1)

2014:12:30-14:30:56 gateway exim-in[31993]: 2014-12-30 14:30:56 SMTP connection from (190-186-108-29.pools.spcsdns.net) [66.87.82.190]:12458 closed by QUIT

2014:12:30-14:30:56 gateway exim-in[4703]: 2014-12-30 14:30:56 SMTP connection from [66.87.82.190]:13521 (TCP/IP connection count = 1)
Not sure what I'm missing. I am receiving external server to internal server emails and the proxy is catching spam. I used to have DNAT rules to forward all email traffic to the internal email server but I disabled them when I enabled the proxy. I also have firewall rules allowing email traffic in. Are firewall rules for ports 25, 465, and 587 even neccessary with the proxy?
--------------------------------------------------------------------
Sophos UTM 9.719-3 - Home User
Virtual machine on Dell Optiplex 3070
i3-9100 @ 3.60 GHz, 16 GB RAM
--------------------------------------------------------------------
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Jeff x over 9 years ago
Found another issue. I can send emails from the LAN to external but I'm no longer able to send emails from my mobile devices when I'm external. My mail client says there's no way to authenticate. I've tried ports 465 and 587. The SMTP Proxy log entries:

2014:12:30-14:30:55 gateway exim-in[4703]: 2014-12-30 14:30:55 SMTP connection from [66.87.82.190]:16449 (TCP/IP connection count = 1)

2014:12:30-14:30:55 gateway exim-in[31991]: 2014-12-30 14:30:55 SMTP connection from (190-186-108-29.pools.spcsdns.net) [66.87.82.190]:16449 closed by QUIT

2014:12:30-14:30:55 gateway exim-in[4703]: 2014-12-30 14:30:55 SMTP connection from [66.87.82.190]:12458 (TCP/IP connection count = 1)

2014:12:30-14:30:56 gateway exim-in[31993]: 2014-12-30 14:30:56 SMTP connection from (190-186-108-29.pools.spcsdns.net) [66.87.82.190]:12458 closed by QUIT

2014:12:30-14:30:56 gateway exim-in[4703]: 2014-12-30 14:30:56 SMTP connection from [66.87.82.190]:13521 (TCP/IP connection count = 1)
Not sure what I'm missing. I am receiving external server to internal server emails and the proxy is catching spam. I used to have DNAT rules to forward all email traffic to the internal email server but I disabled them when I enabled the proxy. I also have firewall rules allowing email traffic in. Are firewall rules for ports 25, 465, and 587 even neccessary with the proxy?
--------------------------------------------------------------------
Sophos UTM 9.719-3 - Home User
Virtual machine on Dell Optiplex 3070
i3-9100 @ 3.60 GHz, 16 GB RAM
--------------------------------------------------------------------
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data