Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 8 replies
  • Answers 1 answer
  • Subscribers 26 subscribers
  • Views 4681 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG18: MTA mode and port 465/587 for TLS/SSL Email protection

FelixSteinbeis

Hi together,

On my XG18 (with default config) I can send emails from LAN to Sophos MTA only on port 25. 

How can I setup XG18 to receiver emails over TLS/SSL on port 465 or 587?

The Sophos MTA seems only listening on port 25.

Thanks a lot.

Many greetings
Felix



This thread was automatically locked due to age.
Parents
  • 0

    Hi  

    You may add below command for port 587.

    console> set service-param SMTP add port 587

    MTA support on port 465 has been identified as a feature request. 

    You may raise a feature request or thread on our idea portal (https://ideas.sophos.com/)

  • 0 in reply to Vishal_R

    Hi Vishal,

    Thanks for your quick reply.

    Unfortunately, It doesn't work. I can not connect to MTA on port 587, regardless with SMTP or SMTP-SSL.

    Any further ideas?

    Thanks a lot.

    Many greetings
    Felix

     

    console> show service-param
    Service Ports
    ------- -----
    SMTPS 587
    ------------------------------------
    Other Configurations:
    HTTPS invalid-certificate: block
    HTTPS deny_unknown_protocol: off
    SMTPS invalid-certificate: allow
    MTA mta mode: on
    MTA auth relay: on
    SMTP notification-port: 25
    SMTP strict-protocol-check: off
    SMTP Failure notification: on
    ------------------------------------

  • 0 in reply to FelixSteinbeis

    Hi  

    In the command there is minor correction or update. 

    Please revert the previous applied command with this one: console> set service-param SMTPS del port 587

    Please use this one : console> set service-param SMTP add port 587

    Also ensure auto MTA rule has SMTPS service with port 587 added in the rule.

  • 0 in reply to Vishal_R

    Hi Vishal_R,

    Thanks again.

    I have deleted SMTPS port 587 and added SMTP port 587. The rules are like in your screenshot.

    Now I can connect to port 587, BUT only with SMTP or SMTP STARTTLS.

    What I want is connect SMTP directly with TLS/SSL.

    Any other possibility/settings?

    Thanks a lot.
    Felix

Reply
  • 0 in reply to Vishal_R

    Hi Vishal_R,

    Thanks again.

    I have deleted SMTPS port 587 and added SMTP port 587. The rules are like in your screenshot.

    Now I can connect to port 587, BUT only with SMTP or SMTP STARTTLS.

    What I want is connect SMTP directly with TLS/SSL.

    Any other possibility/settings?

    Thanks a lot.
    Felix

Children