We have a Cisco ASA 5520 in our setup and in the dmz we have a postfix server, where we have applied a certificate and configured postfix to use that certificate.
When connecting from outlook 2007 using TLS from the inside and to the postfix server in the dmz it works, but when connecting from the outside to the postfix server it does not work.
When going from outside to the postfix traffic is passing through the asa 5520, but when going from the inside to the postfix server traffic is passing through a PIX501.
The ASA is running:
Cisco Adaptive Security Appliance Software Version 7.0(7)
Device Manager Version 5.0(7)
This is our inspection policy:
inspect dns maximum-length 512
service-policy global_policy global
smtp-server <ip1> <ip2>
We have also allowed traffic on port 25 and that works for non TLS traffic.
We really need TLS to be allowed through the ASA.
Can somebody help with an answer?