Hello,
I'm trying to set up e-mail reporting in iView2 (SIVOS 02.00.0 MR-1) combined with Sophos XG (15.01.0 MR-3). I have Exchange Server behind XG. My XG scans e-mail through SMTP Inbound Scanning Rule but iView does not generate any reports. Web reports work properly, I can see the blocked pages, etc. so my Sophos XG sends logs data to iView.
In the live view i can see some SMTP logs:
device="SFW" date=2016-08-24 time=15:18:16 timezone="CEST" device_name="SFVUNL" device_id=C01001C6C4BJG21 log_id=045905613003 log_type="Anti-Spam" log_component="SMTPS" log_subtype="Clean" status="" priority=Information fw_rule_id=0 user_name="" av_policy_name="None" from_email_address="user1@test.int" to_email_address="test@sopas.int" email_subject="Testing e-mail" mailid="" mailsize=1569 spamaction="Accept" reason="" src_domainname="test.int" dst_domainname="" src_ip=10.10.50.66 src_country_code=R1 dst_ip=10.10.50.88 dst_country_code=R1 protocol="TCP" src_port=48516 dst_port=25 sent_bytes=0 recv_bytes=0 quarantine_reason="Other"
Exchange send and recive e-mails with no problems, SPAM scanning is also working fine.
Any ideas?
Here are my XG log settings
This thread was automatically locked due to age.
