Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted

Check Point sends out MAILER-DAEMON

Hi everyone,

I would like to ask why does the Security Gateway sends out this kind of email to the internal users.

 mail.PNG

and i also checked the postfix logs of the email server and gives me this info

Mail Server PostFix Log 2.PNG

is there a possibility that the security gateway is compromised? or if anybody here can interpret what this logs and mail means its really a big help.

0 Kudos
3 Replies
Highlighted
Admin
Admin

What Software Blades do you have enabled on this gateway?
0 Kudos
Highlighted

Blades that are related to emails are Anti-Spam, Threat Emulation and Threat Extraction. Other Software Blades that are open are APPCtl , URLF, IPS, AV, AB, Identity Awareness.

 

Also i have raised this to TAC and they told me that i am experiencing this sk110813. Now that i know that is only sends this kind of email when the email is not delivered but i need more explanation or verification that the Security Gateway is not compromised or what are other factors that causes this. eg. Compromised Mail Server or PC

 

 

 

0 Kudos
Highlighted
Pearl

I'd check it for being an open relay just in case:

https://mxtoolbox.com/diagnostic.aspx

0 Kudos