Skip to main content

We operate the Sophos UTM (Astaro Security Gateway) security system as an anti-spam solution for emails. Log in to the Astaro User-Interface. Below you will find a brief explanation of the relevant functions.

Note: The Sophos UTM service will be discontinued at the end of the year. Until then, we will gradually switch to the new provider.

Email quarantine

The Email quarantine is a secure storage for email messages including attachments that have been classified as malicious by Sophos UTM. All suspicious emails are redirected there and cannot spread or execute malicious code from there. You receive a daily email when new emails are added to the quarantine.

The user portal provides you with an overview of all emails stored in the quarantine. You can use this to release these emails again if they have been incorrectly categorised as spam. Sophos UTM will move the corresponding email to your inbox.

Note: Please only do this if you are sure that it is a trusted message.

Mail log

Email logs are only displayed if MTA (Mail Transfer Agent) mode is enabled. This function requires a subscription. It can be configured, but is only activated with a valid Email Protection subscription. This page displays the logs of all processed emails.

Start and end date

Select the start and end date within which the message was processed.

Recipient domain

Specify the domain of the recipient whose emails you want to display.

Result filter

Select the type of message to be displayed:

  • Delivered: Successfully delivered emails.
  • Rejected: Emails that were rejected by the appliance and for which the sender was notified.
  • Discarded: Emails that were rejected by the appliance and for which the sender was not notified.
  • Isolated: Isolated emails.
  • Rejected emails that were automatically discarded by the appliance after several failed delivery attempts.
  • Deleted: Emails that were deleted manually.

Cause filter

Filter email logs for the following causes:

  • Infected with malware
  • Spam
  • Contain blocked files/attachments
  • Contain non-scannable content or protected attachments
  • Blocked by Data Protection (DP)
  • SPX-encrypted
  • Not delivered and SPX-encrypted
  • No SPF record found or matching
  • Blocked by RBL
  • Categorised as malicious by Sandstorm
  • Blocked for other reasons

Filter

Click, to apply the filter to the displayed logs.

Clear

Click to reset the filter options. The default options show the current day as the start and end date and all filters are selected.

Sender whitelisting

The aim of whitelisting is to ensure that emails from the listed senders are reliably delivered to recipients and do not end up in the spam folder. Whitelisting is an attempted solution for such an incorrect assignment.

Sophos allows you to assign email domains with placeholders (such as * [at] gmail [dot] com (*[at]gmail[dot]com)) or email addresses (such as friend [at] gmail [dot] com (friend[at]gmail[dot]com)) to the "Sender whitelist".

  • Select the "Sender whitelist" option on the control bar and click on the plus sign.
  • Enter the new entry and then click the tick to save it.
  • To edit, click the clipboard icon and to delete, click the paper basket icon.
  • Note that the whitelist only applies to AntiSpam and expressions, but is ignored by antivirus scans.

Sender blacklist

If an email is categorised as spam, it will be blocked. Sophos allows you to add desired email domains with placeholders (such as * [at] gmail [dot] com (*[at]gmail[dot]com)) or email addresses (such as friend [at] gmail [dot] com (friend[at]gmail[dot]com)) to the "Sender Blacklist". They will be added to the blacklist and will no longer be able to send messages to this address.

To add an entry, proceed as for the "Sender whitelist":

  • Select the "Sender blacklist" option on the control bar and click on the plus sign.
  • Enter the new entry and then click on the tick to save it.
  • Click on the clipboard icon to edit and the basket icon to delete.

.