since v19.0EAP2 TLS/SSL decrypt IMAPS POPS

my first post was with port ano OFF
but now tested again
ips scan_decrypted_port_agnostic ON or OFF doesnt matter
SSL/TLS scans IMAP POP3 and SMTP
but after set it again off and on, I don't geht the untrust cert again.
I am now using the SecureAppliance_CA again.

Because SMTP is scanned to, I putt all SMTP Ports to my "don't decrypt" rule

I am a bit unsure but in my mind it makes sense that this traffic is scanned from TLS/SSL to. Just that it now happens should be a point of interest.

ATM I disable my don't decrypt (POP3,IMAP,SMTP) to see what happend.
The problem with that untrusted cert is one big thing that should be cleared. 

Hi lucar,

no, this has been an issue with smtps since I installed v18.5.1 on my old Xeon based machine. The xg115w is a fresh install and configuration so there is no hangover from the old xeon configuration.

Ian

Hi,

I have created an SSL/TLS rule to scan emails again. Now the profile shows two CAs that failed security, where do I find the CAs to confirm which ones they are, though I suspect I know. The same CAs are trusted by the firewall rule using imaps scanning, so what is wrong with the SSL/TLS scanning?

And please don't try to tell me Sophos SSL/TLS CA scanning is more rigorous then many other companies that use the same ISP mail servers.

Ian

SSL/TLS is acknowledged as not supporting email scanning.

Ian