Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Subscribers 4 subscribers
  • Views 4467 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SPAM issue

AreshAreshi

Hi,

lately the UTM dont stop the SPAMs and send them to the exchange server and then exchange server see them as spam and send them to the junkmail folder of the end user.

we told to our users that they dont need to check thier junkmail folder because they will get a report when they have something in the quarantine box.

 there are really alot of spam that been Delivered to the Exchange server and we cannot just one by one send to the support lab

Any idea why UTM 9.352-6 dont stop the spams?

Thanks



This thread was automatically locked due to age.
Parents
  • 0
    Please show the lines from the SMTP log file where a spam was let through.
    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Please show the lines from the SMTP log file where a spam was let through.
    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • 0 in reply to BAlfson

    Hi Balfson,

    this the smtp proxy log:

    /var/log/smtp/2016/01/smtp-2016-01-23.log.gz:2016:01:23-01:57:50 securitysrv1-1 smtpd[10461]: SCANNER[10461]: id="1000" severity="info" sys="SecureMail" sub="smtp" name="email passed" srcip="205.201.128.87" from="bounce-mc.us6_13822207.69989-aresh=mydomain@mail87.us4.mcsv.net" to="aresh@mydomain.nl" subject="Winter Storm Warning: Enable Emergency Hotsite Server" queueid="1aMmWU-0002ij-0Q" size="45813"

    /var/log/smtp/2016/01/smtp-2016-01-20.log.gz:2016:01:20-00:02:50 securitysrv1-1 smtpd[26309]: SCANNER[26309]: id="1000" severity="info" sys="SecureMail" sub="smtp" name="email passed" srcip="37.221.217.190" from="gk_netherlandslz.f.31115.2717.0@globalknowledge.geml1.co.uk" to="aresh@mydomain.nl.nl" subject="Happy Day! Profiteer vandaag van 40%25 korting op trainingen! " queueid="1aLfIY-0006qL-Bs" size="22331"

    also this:

  • 0 in reply to AreshAreshi

    Those aren't, technically, spams at all. The first one was sent with MailChimp, a reputable mailing list company. Each email has a link to click to opt out of the mailings. People sign up for something and then don't remember that they "invited" the emails.  Exchange lets people identify things as spam even when it isn't.

    Just tell your users to go through their spam folder and opt out.  In a few days, maybe a week, they'll stop receiving such emails.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML