Go Premium for a chance to win a PS4. Enter to Win


Disable inspect esmtp on ASA 5505

Posted on 2009-05-26
Medium Priority
Last Modified: 2013-11-16
We are having some problems with our ASA 5505 firewall sporadically dropping connections to our email server behind it. I was told that I should disable the inspect esmtp to see if that resolves the issue. Most emails are getting through but some mostly GMail emails connections are being dropped. Ok, I'm not a expert with Cisco Firewalls, but know how to get in and do some stuff. So step by step what is the command to disable esmtp and can this be done while users are on the network? If this doesn't work how do I put it back?
Question by:Djrobluv
LVL 33

Accepted Solution

MikeKane earned 1000 total points
ID: 24475982
You can use either the GUI or the command line....

If you have access to ASDM GUI then:
Configuration --> Service Policy Rules -->  General/Global Policy --> Edit ---> Rule Actions --> Uncheck ESMTP
Click OK --> Apply --> Save

Or for the command line:
Use telnet, ssh, or via a direct console connection....   All depends on how it was setup.      Once you are connected:

(enter the enable password)
config t
no fixup protocol smtp 25
write mem

You can safely remove the fixup while users are connected....  


Expert Comment

by:Markus Braun
ID: 24480550
If you do it by SSH or telnet, do a show run, go all the way to the bottom, you will see this:

policy-map global_policy
 class inspection_default
  inspect dns preset_dns_map
  inspect ftp
  inspect h323 h225
  inspect h323 ras
  inspect netbios
  inspect rsh
  inspect rtsp
  inspect skinny
  inspect esmtp
  inspect sqlnet
  inspect sunrpc
  inspect tftp
  inspect sip
  inspect xdmcp

in config mode type: (assuming you know how to get there)

policy-map global_policy (press enter)

then type
class inspection_default (press enter)

now type

no   inspect esmtp (press enter)


write (press enter)

now the esmtp inspect is disabled

Expert Comment

ID: 36425125

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

An introduction to the wonderful sport of Scam Baiting.  Learn how to help fight scammers by beating them at their own game. This great pass time helps the world, while providing an endless source of entertainment. Enjoy!
As managed cloud service providers, we often get asked to intervene when cloud deployments go awry. Attracted by apparent ease-of-use, flexibility and low computing costs, companies quickly adopt leading public cloud platforms such as Amazon Web Ser…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

916 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question