Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 2 subscribers
  • Views 10638 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

User Portal Mail Log Doesn't Match Mail Manager

DaveGilmore

Why is it that when a user logs into their User portal to see their mail log, some SPAM messages do not show up for them, but when I log into the admin portal and look at the mail log in the message manager I can see stuff for them that they don't? This is only regarding SMTP. We do not use a POP3 proxy. Using UTM 9.352-6

Thanks!



This thread was automatically locked due to age.
  • 0

    Hi, Dave, and welcome to the UTM Community!

    Please insert pictures of a User Portal and Mail Manager that are not in sync.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Hi Bob!

    Here is the Mail Manager filtered on the user@ourdomain.com email address

    2016-03-30 10:30
    1.2.3.4
    sender@some.org
    user@ourdomain.com
    Delivered -> 10.192.0.50)
     
    7kB
    7 s
    RE: Summary Rpt
    2016-03-30 10:26
    5.6.7.8
    legitsender@domain.com
    user@ourdomain.com
    Rejected: Spam
     
    20kB
    		 
    Re: Response to Employment Opportunity
    2016-03-30 10:23
    5.6.5.6
    legitsender@domain.com
    user@ourdomain.com
    Rejected: Spam
     
    20kB
    		 
    Re: Response to Employment Opportunity
    2016-03-30 10:13
    1.2.3.4
    sender@some.org
    user@ourdomain.com
    Delivered -> 10.192.0.50
     
    19kB
    3 s
    RE: Stategy Session
    2016-03-30 09:48
    10.192.0.50
    user@ourdomain.com
    someuser@yahoo.com
    Delivered -> 66.196.118.35 (mta7.am0.yahoodns.net)
     
    5kB
    13 s
    Some Subjectt
    2016-03-30 09:45
    74.3.160.8
    junksender@junkdomain.com
    user@ourdomain.com
    Rejected: RBL (b.barracudacentral.org)
     
    1kB
    		 

    Here is the mail log when user@ourdomain.com signs into the portal. Note the two SPAM messages from legitsender@domain.com do not appear to the user

    2016-03-30 10:30
    1.2.3.4
    sender@some.org
    Delivered -> 10.192.0.50
     
    7kB
    7 s
    RE: Summary Rpt
    2016-03-30 10:13
    1.2.3.4
    sender@some.org
    Delivered -> 10.192.0.50
     
    19kB
    3 s
    RE: PPOA Stategy Session
    2016-03-30 09:48
    10.192.0.50
    someuser@yahoo.com
    Delivered -> 66.196.118.35 (mta7.am0.yahoodns.net)
     
    5kB
    13 s
    Some Subject
    2016-03-30 09:45
    74.3.160.8
    junksender@junkdomain.com
    Rejected: RBL (b.barracudacentral.org)
     
    1kB
    		 

    Thanks!

  • 0 in reply to DaveGilmore

    Whoa! I would be tempted to rebuild the PostgreSQL data bases - that does delete all of the data and graphs though.  You might still be able to rebuild only the SMTP databases, and that causes no loss:

    /var/mdw/scripts/smtp stop
    dropdb -U postgres smtp
    createdb -U postgres smtp
    /var/mdw/scripts/smtp start

    If that doesn't work and after Up2Dating to 9.355, you still have this problem, please report it to Sophos Support as a bug.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Thanks for the tips Bob. I will try this over the weekend.

  • 0 in reply to BAlfson

    Hi Bob,

    I applied all of the updates up to 9.355-1 two weekends ago and the issue remains. I have not tried the command you gave me, though. If I drop the smtp db will it get recreated from the smtp logs or something?

    Thanks!

  • 0 in reply to DaveGilmore

    Yes, Dave, the underlying spool database will be recreated from the list of items in the spool directory. As I recall, the SMTP Log tab is not destroyed by a rebuild, but I also haven't heard of this problem before, so now I wonder if it is not based on a PostgreSQL database and so would be unaffected by a rebuild...

    The PostgreSQL databases are not repaired by Up2Dates, so the fact that you still have the problem does indicate the SMTP database is "broken" and in need of regeneration.

    If that doesn't work, rebuilding all of the databases should work - it does delete all of your graphs and reporting, but not the log files. I would get Sophos Support involved first and let them do this if they fell necessary.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML