Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 12 replies
  • Answers 1 answer
  • Subscribers 29 subscribers
  • Views 8735 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Email Notification not working

Inspace IT

I am setting my xg to send email notification for link down, wan failover, etc

I am using the Gmail server to send a notification to my personal account. 

I navigated to administration>email notification and chose the external server did all the configuration. The test mail was successful but I haven't received any mails.

I checked everything on Gmail setting everything is fine and xg also says "test email successful". but no email received on my personal account.



This thread was automatically locked due to age.
Parents
  • 0

    Email notifications use to work both with the built-in Sophos XG mail server and using an external mail server. It was several release ago it stopped working for me. There’s a few threads about it on these forums but there was never a solution. The conclusion I came to is it’s broken. I’ve tried setting it up using iCloud and Gmail, but have the same issues as you. When trying to send a test mail, it looks like its successful but gets queued within Sophos XG but never actually makes it out.

  • 0 in reply to shred

    I asked in nearly all threads, if the problem is caused by the MASQ, but never got a dump or a conformation.

    If you can reproduce this and can take a look at the XG tcpdump, can you see, that the XG tries to send a mail with 0.0.0.0 outbound? 

  • 0 in reply to LuCar Toni

    What is the recommended tcpdump parameters to use to capture XG trying to send an email outbound? I'm not too familiar with using tcpdump.

    This is what I'm seeing in the XG logs:

    2019-11-14 19:51:07Emailmessageid="18035" log_type="Anti-Spam" log_component="SMTP" log_subtype="Allowed" status="" fw_rule_id="0" user="" policy_name="None" sender="redacted@icloud.com" recipient="redacted@icloud.com" subject="Test Mail" message_id="1iVSdW-0002GL-Qa-1573789867" email_size="933" action="QUEUED" reason="Email has been accepted by Device and queued for scanning." host="icloud.com" domain="" src_ip="127.0.0.1" src_country="R1" dst_ip="" dst_country="" protocol="TCP" src_port="54579" dst_port="0" bytes_sent="0" bytes_received="0" quarantine_reason="Other"

Reply
  • 0 in reply to LuCar Toni

    What is the recommended tcpdump parameters to use to capture XG trying to send an email outbound? I'm not too familiar with using tcpdump.

    This is what I'm seeing in the XG logs:

    2019-11-14 19:51:07Emailmessageid="18035" log_type="Anti-Spam" log_component="SMTP" log_subtype="Allowed" status="" fw_rule_id="0" user="" policy_name="None" sender="redacted@icloud.com" recipient="redacted@icloud.com" subject="Test Mail" message_id="1iVSdW-0002GL-Qa-1573789867" email_size="933" action="QUEUED" reason="Email has been accepted by Device and queued for scanning." host="icloud.com" domain="" src_ip="127.0.0.1" src_country="R1" dst_ip="" dst_country="" protocol="TCP" src_port="54579" dst_port="0" bytes_sent="0" bytes_received="0" quarantine_reason="Other"

Children
  • 0 in reply to shred

    Seems like this issue. 

    Can you actually reproduce it? 

    (PS would be fixed anyways in V18, because you could easily setup a WAN MASQ on Interface level, which would pick up this mail).

     

    If you run a tcpdump -ni any host 0.0.0.0  

    You should see this mail on WAN Interface, which can of course not be answered. 

  • 0 in reply to LuCar Toni

    Just tried sending a test message while using tcpdump, specifically: tcpdump -ni any host 0.0.0.0 

    I'm not seeing any activity at all. I'm still seeing the same message in the Sophos XG logs, however.

  • 0 in reply to shred

    Have a look at packet length being processed.

    Ian

  • 0 in reply to shred

    You are sending via SMTP Port 25? Or how should XG transfer the mail? 

    Do you see some packets with ' tcpdump -ni any port 25 '    ? 

  • 0 in reply to LuCar Toni

    I've tried it with the Sophos XG built-in mail server and with my Gmail account. When using 'tcpdump -ni any port 25', I don't see any activity when sending a test mail with the Sophos XG built-in mail server. When using 'tcpdump -ni any port 465', I don't see any activity when sending a test mail with Gmail configured. I'm still seeing the same entires in the Sophos XG logs, however. It seems like the messages are being queued for scanning but never actually make it past that.

    As I mentioned before, this use to work reliably using the built-in Sophos XG mail server. Test messages, notifications, backups - all worked great. At some point when I upgraded to one of the MR-X releases, it stopped working.

  • +1 in reply to shred

    Hi Shred,

    I had the same issue that started in the Spring with the email I had with my local ISP.  Notifications used to be sent out, but the release that I upgraded to stopped the email function.  This lasted for months.  After a few months, I decided to switch over the notifications to my Gmail account.  Again, no success until a couple of months ago when it automagically began working.  It didn't start working as a result of upgrading.  It started working 1/2 way along before I installed v18.

    Here is a screenshot of my notification settings in v18.

  • 0 in reply to Casual_User

    Thanks Casual_User,

    I actually didn't have "Certificate" set to "ApplianceCertificate". After setting that, it seems to be working again with Gmail!

    I am curious, though, why it stopped working with the built-in mail server as it use to work fine. Oh well, at least it's working again. Thanks!