topic Re: MTA TLS inspection in General Topics

MTA TLS inspection

Andy_N — Thu, 28 Feb 2019 10:24:26 GMT

Hi,

We need to inspect SMTP TLS – the question is - which Outbound Certificate we have to import to CP?

Is it our internal certificate installed on internal mail server?

Regards

Re: MTA TLS inspection

Alessandro_Marr — Thu, 28 Feb 2019 17:15:36 GMT

Do you have threat extraction blade? you could install a gateway with a function MTA to receive/send emails....

Re: MTA TLS inspection

Andy_N — Fri, 01 Mar 2019 05:08:33 GMT

Alessandro, thanks for quick response.

We have not threat exctraction blade - is it important in this action?

Re: MTA TLS inspection

Wolfgang — Tue, 12 Mar 2019 20:40:19 GMT

You have to import your external certificate for the FQDN which points to your mx records.

this is the certificate which is presented to the outside MTAs sending messages to your domain. You don‘t need ThreatExtraction or -emulation blade to use the MTA.

Wolfgang