If you are trying to publish an SMTP Server behind a Cisco ASA 5500 Series with ASA version 8.3 or above then you will find when you try to test port 25 you get the message
220********************************
and you cannot enter any SMTP commands. This is because SMTP is being inspected and this causes the issue.
The global inspection policy will show that smtp is not listed for inspection and nor is esmtp so whats the cause?
It is the fixup command, a legacy from PIX days. If you use this command
no fixup protocol smtp 25
You will then see you can telnet on port 25 SMTP commands function correctly
No comments:
Post a Comment