ASA esmtp inspection

Hi

My mail server is behind a Cisco asa version 9.
I cannot send mail when esmtp inspection is enable on firewall using ports 465.
My question is how can I get e-mail working with esmtp inspection enabled as it now using having a firewall when security feature are disabled.
Please help someone
ciscosuppAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
Henk van AchterbergSr. Technical ConsultantCommented:
In ASDM you are able to create  custom ESMTP rule "map".

Please look at the picture I created for you.
asa-esmtp.png
0
 
fgasimzadeCommented:
My personal advice - disable emstp inspection
0
Turn Raw Data into a Real Career

There’s a growing demand for qualified analysts who can make sense of Big Data. With an MS in Data Analytics, you can become the data mining, management, mapping, and munging expert that today’s leading corporations desperately need.

 
Henk van AchterbergSr. Technical ConsultantCommented:
fgasimzade: I think the topic starter does know that disabling works but would like to use this security feature.

Disabling this feature is the "lazy" approach. When you want to enforce strict security ESMTP  inspection is a real good enforcement tool.

But with everything you enforce you will get extra support tickets when someone does not get through. That is why logging is very important!
0
 
ciscosuppAuthor Commented:
thanks fgasimzade

how can I do it via command line and what must I change
0
 
fgasimzadeCommented:
conf t
policy-map global_policy
 class inspection_default
no inspect esmtp
0
 
ciscosuppAuthor Commented:
mean thanks  henkva

how can I create a custom ESMTP rule via command line
0
 
ciscosuppAuthor Commented:
ok thanks for link will check it out
0
 
ciscosuppAuthor Commented:
policy-map type inspect esmtp tls-esmtp
parameters
allow-tls
inspect esmtp tls-esmtp


works perfect
0
All Courses

From novice to tech pro — start learning today.