Skip to content
Last update: 2021-10-15

Add a POP-IMAP scan policy (MTA mode)

With POP-IMAP scan policies, you can specify filter criteria for senders' and recipients' emails. You can warn recipients based on a criteria match in emails.

  1. Go to Email > Policies and exceptions.
  2. Click Add a policy, and then click POP-IMAP scan.
  3. Enter a name.
  4. Specify the senders' and recipients' email address groups or domain groups.

    Specify an exact match or keyword match.

  5. Specify the filter criteria based on which policy applies the specified action.

    Option Description
    Inbound email is Criteria for spam, probable spam, virus outbreak, or probable virus outbreak.
    Source IP/network address Sender's IP address or network address.
    Message size Upper or lower limit of email size for scanning.
    Message header Header criteria.
    For Other, enter the details.
    Specify an exact match or keyword match.
    Specify the keyword.
    None Sophos Firewall applies the action that you specify to all emails sent between the specified senders and recipients.
  6. Select the action.

    Option Description
    Accept Delivers the email.
    Prefix subject Adds a prefix to the subject and delivers the email.
    Note: You can specify a prefix that indicates the filter criteria. For example, if you specify the prefix Probable spam to the subject Test email, recipients receive an email with the subject Probable spam: Test email.
  7. Click Save.

Update the automatically created firewall rule for MTA with the POP-IMAP scan settings under Scan email content. Alternatively, create a new firewall rule.

More resources

Back to top