Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 11 replies
  • Subscribers 6 subscribers
  • Views 16069 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SMTP Proxy With NAT - how to publish Exchange/OWA

colly72

I'm currently using NAT with our Exchange server (I've not had any success with WAF). I've setup the UTM SMTP proxy to filter inbound and outbound mail, with Exchange using the UTM as a smart host. Any outbound mail is going through the proxy but inbound seems to come straight to the Exchange server, bypassing the smtp proxy. If I turn the NAT rule off, the proxy seems to work properly, but then I can't connect with Outlook, or Outlook Web App. It's probably really straightforward but can anyone give some advice on how I might get this to work? I'd use WAF ideally but I've tried numerous times, following the docs word for word and it never works properly for me. Thanks, Michael



This thread was automatically locked due to age.
Parents
  • 0

    I spent hours on this following the documentation. It's wrong.

    I now have this working although there are bugs with 9.4 which require occasional reboot of the UTM.

    Happy to discuss if you still have issues.

    Regards Rob.

  • 0 in reply to RobertCullen

    Hello Rob,


    Yes I am actively working to get my Exchange server published and have been working with engineers at Sophos but they have not been able to figure it out.


    I used the article they have published called Sophos UTM Web Application Firewall for Microsoft Exchange Services

    Would appreciate any assistance you can provide as I am running out of options. Right now I have to DNAT all SSL traffic to my on-premis Exchange server and that's not the right way to do it.

    Thank you, Herb

  • 0 in reply to HerbStull

    Hi Herb

    This is easier to talk through rather that via messages. I see you're located in the states. If I can get an idea of your infrastructure it would be easier to discuss.

    I'm based in the UK. You're more than welcome to call me 9-5 GMT. Alternatively, email me with your current setup. (rcullen (at) ttsonline.net) and I'll try and point you in the right direction.

    Kind Regards

    Rob

Reply
  • 0 in reply to HerbStull

    Hi Herb

    This is easier to talk through rather that via messages. I see you're located in the states. If I can get an idea of your infrastructure it would be easier to discuss.

    I'm based in the UK. You're more than welcome to call me 9-5 GMT. Alternatively, email me with your current setup. (rcullen (at) ttsonline.net) and I'll try and point you in the right direction.

    Kind Regards

    Rob

Children
No Data
Unfiltered HTML