Skip to content

Page permalink

Always use the following permalink when referencing this page. It will remain unchanged in future help versions.

https://docs.sophos.com/support/surf/en-us/index.html?contextId=sf-critical-email-ANY

Do not accept emails from ANY (Avoid open relay) - applicable to MTA mode only

Critical

Explanation

Adding Any will result in an open relay, allowing anyone on the internet to send emails through Sophos Firewall.

Resolution

  1. Go to PROTECT > Email > General settings.
  2. Ensure that SMTP deployment mode is set to Mail Transfer Agent (MTA).

Note

You are at the MTA mode if you are seeing the Switch to legacy mode button. The legacy mode is not compatible with Sandstorm for Email.

  1. Go to PROTECT > Email > ... > Relay settings.
  2. Ensure that Any is not added under Host based relay > Allow relay from hosts/networks.
  3. Click Apply.