Thread Info
  • State Not Answered
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 6 replies
  • Subscribers 28 subscribers
  • Views 4285 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

mail exeption whitelist ignored

Lucho

Hello, I'm having issues using the whitelist, there are some cases where it does not seem to be honored, I've posted screenshots of my current setup, the exception is made for the sender domain and i have rbl and ip reputation check disabled in the exeption rules. However the XG still bounces the mail from this sender.

 

 

 

 

 

Also, what is this for? Isn't "Reject based on IP reputation" in general the same as enabling RBL in the smtp input policy?

 

 



This thread was automatically locked due to age.
  • 0

    Hi  

    Would it be possible to PM me with more info regarding this mail exception issue (and your Support Access ID)?

    I'd like to investigate your configuration further.

    • Regarding "Reject based on IP reputation" - This setting allows the firewall to check the sender's IP reputation ahead of the spam checks specified in your SMTP route and scan policy.

    Regards,

  • 0 in reply to FloSupport

    Thanks, I've sent you a PM with the requested information. The "Reject based on IP reputation" uses the whitelist?

  • 0

    Hello, I had to open a new support ticket last week, since the time FloSupport verified this the problem was fixed by the other side (client got removed from blacklist).

    While the issue was technically fixed, it should be called a workaround: In support ticket #8683152 my issue was solved by support creating an exception for the IP address of the mail server.

     

    Adding the domain name itself (something you do in most solutions ) has no effect even when the exception has RBL selected. There is no clarification anywhere about this.

  • 0 in reply to Lucho

    Hi  

    Apologies for this inconvenience.

    Yes, that is correct. The sender IP was being blocked due to an RBL blacklist at the IP connection level on your XG. In this situation, an IP host object will need to be used for this exception.

    Regards,

  • 0 in reply to FloSupport

    FloSupport said:
    The sender IP was being blocked due to an IP blacklist at the connection level on the XG. This is why your domain address exception was not excluding this sender's email as you were expecting.

    And are there any plans, that this behaviour will be changed? As we can see in the debug logs, the email addresses are already available at this connection level.

  • 0 in reply to FloSupport

    FloSupport said:

    Hi  

    Apologies for this inconvenience.

    The sender IP was being blocked due to an IP blacklist at the connection level on the XG. This is why your domain address exception was not excluding this sender's email as you were expecting.

    Reference: Sophos Labs IP Address Classification Policy

    Regards,

     

    Thanks FloSupport, I still have some questions about this.

    * How do you know it is blocked at connection level, or WHY? I do have enabled RBL checks in the smtp policy, but in general settings "Reject based on IP reputation" is not checked.

    * How do you differentiate connection level vs smtp level or RBL instead of firewall?

    My concern maybe is more of a usability problem, exceptions allows me to input domains, addresses, and IPs, without notices on which kind feature they act on, it is not clear that RBL is only disabled if you add an ip address. AFAIK, in other solutions just adding a domain will work. Who will keep checking IPs didn't change for every domain in the list?

     

    Thanks