<div>
This is the config:<br />
<br />
access-list 101 extended permit tcp any host xxx.xxx.xxx.xxx eq smtp <br />
&nbsp;static (inside,outside) tcp interface smtp xxx.xxx.xxx.xxx smtp netmask 255.255.255.255 <br />
<br />
&nbsp;access-list 101 extended permit tcp any host xxx.xxx.xxx.xxx eq 587<br />
&nbsp;static (inside,outside) tcp interface 587 xxx.xxx.xxx.xxx 587 netmask 255.255.255.255
</div>


<div>
Thank you,<br />
They have refused. &nbsp;They say they are doing this for all accounts - business and residential, weather or not they host our email or domain. &nbsp;We have talked to them 5 times to verify. &nbsp;Many people have said this is extreme. &nbsp;<br />
Yes, we host our own email server onsite.
</div>


<div>
We want to. &nbsp; Unfortunately, there are no options in the area.
</div>


<div>
So, between DSL, wireless, cable tv, ethernet, and ftth there is but one option?<br />
<br />
I know some rural areas lack competition but -- no one else?
</div>


<div>
Well, we don't want DSL. I am going to check windstream and level 3. &nbsp;Cable is monopolized by the same company giving us trouble. &nbsp;what is ftth? &nbsp;Would Ethernet be direct site to site?
</div>


<div>
fiber to the home. &nbsp;and yes, ethernet, with or without switching, is site to site.<br />
<br />
definitely call windstream and l3.<br />
<br />
this company does not deserve your business.
</div>


<div>
by &quot;this company&quot; i mean &quot;your provider&quot;.
</div>


<div>
Opening port 587 is similar to opening port 25.<br />
<br />
However, port 587 is the client submission port -- not the port to use as a mail transport agent speaking with other mail servers for the final delivery of email.
</div>


<div>
<div class="content wysiwyg-content">
Our ISP has required us to switch our SMTP traffic from port 25 to 587. &nbsp;(Interesting note: We are a business with a business account.)<br />
<br />
I have duplicated the STMP configuration lines in our firewall, replacing “SMTP” with “587”. &nbsp;I think the port is now open. &nbsp;<br />
<br />
Someone claims they are not seeing traffic sent on port 587, and has asked us to prove it is not an issue on our firewall. &nbsp;We are receiving traffic on port 587. &nbsp;<br />
<br />
Would there be additional steps after opening the port such as setting some kind of authentication or encryption in the firewall for port 587?
</div>
</div>


Our ISP has required us to switch our SMTP traffic from port 25 to 587.  (Interesting note: We are a business with a business account.)

I have duplicated the STMP configuration lines in our firewall, replacing “SMTP” with “587”.  I think the port is now open.  

Someone claims they are not seeing traffic sent on port 587, and has asked us to prove it is not an issue on our firewall.  We are receiving traffic on port 587.  

Would there be additional steps after opening the port such as setting some kind of authentication or encryption in the firewall for port 587?

Are there special considerations for opening port 587 on a firewall?

Encryption is the process of encoding messages or information in such a way that only authorized parties can read it. In an encryption scheme, the intended communication information or message, referred to as plaintext, is encrypted using an encryption algorithm, generating ciphertext that can only be read if decrypted. For technical reasons, an encryption scheme usually uses a pseudo-random encryption key generated by an algorithm. An authorized recipient can easily decrypt the message with the key provided by the originator to recipients, but not to unauthorized interceptors.

Encryption

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).