Jim_Coyne
asked on
Limit ESMTP verbs on an exchange 2003 server
How Can I limit the ESMTP verbs on my exchange 2003 server to the following only:
AUTH, DATA, EHLO, ETRN, HELO, HELP, MAIL, NOOP, QUIT, RCPT, RSET,
SAML, SEND, SOML, and VRFY
I need to limit the verbs so I can pass traffic thru a Cisco ASA with Inspect ESMTP enabled. Disabling portocol inspection is not a desired answer, so please don't post that:
AUTH, DATA, EHLO, ETRN, HELO, HELP, MAIL, NOOP, QUIT, RCPT, RSET,
SAML, SEND, SOML, and VRFY
I need to limit the verbs so I can pass traffic thru a Cisco ASA with Inspect ESMTP enabled. Disabling portocol inspection is not a desired answer, so please don't post that:
ASKER
From that article:
By default, this value is 7697601 (0x7574C1H). When you subtract the corresponding decimal value from this number, you can turn on or off the various ESMTP verbs. For example, when you turn off 8bitmime support, the value that results is SmtpInboundCommandSupportO ptions value is 3503297 (0x3574C1H)
Ok, so what is the value for the following to be on?
AUTH, DATA, EHLO, ETRN, HELO, HELP, MAIL, NOOP, QUIT, RCPT, RSET,
SAML, SEND, SOML, and VRFY
By default, this value is 7697601 (0x7574C1H). When you subtract the corresponding decimal value from this number, you can turn on or off the various ESMTP verbs. For example, when you turn off 8bitmime support, the value that results is SmtpInboundCommandSupportO
Ok, so what is the value for the following to be on?
AUTH, DATA, EHLO, ETRN, HELO, HELP, MAIL, NOOP, QUIT, RCPT, RSET,
SAML, SEND, SOML, and VRFY
Your better option is turn off the Cisco inspect SMTP feature. Those options cause nothing but problems with SMTP delivery.
Simon.
Simon.
ASKER
It's not the inspect ESMTP (Cisco) that is the issue. It's the exchange server using extra verbs.
protocol inspection stops attacks like this:
http://www.securityfocus.com/bid/13118
protocol inspection stops attacks like this:
http://www.securityfocus.com/bid/13118
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
How to turn off ESMTP verbs in Exchange 2000 Server and in Exchange Server 2003
http://support.microsoft.com/kb/q257569