This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Force TLS and deny all other mail?

Guys,

We are using an external mail service for blocking SPAM, encryption etc. We want all mail sent between us and this provider to us TLS and only TLS. So basically my question is, is there a way to force the ASG to only send if TLS is successfully negotiated and to deny any email if TLS with our remote provider cannot be negotiated for any reason?

Thanks for any thoughts / advice / suggestions etc,

The Marshall

This thread was automatically locked due to age.

Parents

0 BAlfson over 14 years ago

Since you aren't using the Astaro Anti-Spame/Anti-Virus, why not disable the SMTP Proxy and replace it with a DNAT? That way, your mail server can do TLS directly with your external service.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 14 years ago

Since you aren't using the Astaro Anti-Spame/Anti-Virus, why not disable the SMTP Proxy and replace it with a DNAT? That way, your mail server can do TLS directly with your external service.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 tweber over 14 years ago in reply to BAlfson

No, there is no way yet. But maybe this is what you are looking for: Mail Securty: "require TLS" for certain domains
Cancel
Vote Up 0 Vote Down

Cancel