Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
7846
Views
15
Helpful
3
Replies

Outgoing mail rejected by RAT

udimpas
Level 1
Level 1

‎12-21-2015 10:57 PM

Hi, we have Ironport ESA deployed in one-arm mode. all incoming email passes through Ironport before for warding it to our Lutos server. The issue when we set Lutos server to relay outbound emails to Ironport for Security processing then Ironport sends it outbound. Outgoing mail are rejected by Ironport error "Rejected by RAT".

Any inputs in this?

Thanks,

Ursulo

1 person had this problem
Labels:
0 Helpful
3 Replies 3

Mathew Huynh
Cisco Employee
Cisco Employee

‎12-22-2015 03:22 PM

Hello Ursulo,

Outgoing email should not match the RAT table.

To avoid this and configure an outgoing email setup on your ESA running one arm (one listener)

Please go to GUI > Mail Policies > Mail Flow Policies

Add a new Mail Flow Policy

Name it "RELAYED"

On the settings where it asks "Connection Behaviour" choose "Relay"

Submit this policy.


Now go to GUI > Mail Policies > HAT overview

Add a new sendergroup

Name it RELAYLIST

Order it as '1'

Choose the RELAYED mail flow policy you just created

One done, submit this sendergroup and add senders.

Add the IP of your lotus server into this.

Submit and commit changes.

It should not work.

Outgoing emails from your lotus server will match the RELAYLIST where it will be treated as outgoing and not go through RAT checking.


All other senders, will match the other sendergroups which is treated as Incoming and will be RAT checked.

Regards,

Matthew

udimpas
Level 1
Level 1
In response to Mathew Huynh

‎01-05-2016 11:50 PM

Hi Matthew,

Apologies for the late reply. I was out due to long holidays. 

We have set the configuration mentioned above during the initial setup of the ESA. We found out that the issue is with the Notes server smtp connector configuration. The new admin is not so familiar with Notes so until now they are still trying to figure out how it is should be done. 

Thanks,

Ursulo

0 Helpful

ardiii_890
Level 1
Level 1

‎12-23-2015 02:24 AM

Hi udimpas,

You should go to Mail Flow Policies/Recipient Access Table and add a record four your domain with Default Action Accept. Also should create Relay List and add all your internal mail servers IP to relay list.

That should accept all your mail from lotus. 

0 Helpful
Customers Also Viewed These Support Documents