Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Email Security Quick-links: ESA Product Support | SMA Product Support | Email Submission and Tracking Portal | Cisco SecurityHub
Current General Deployment (GD) Releases:
ESA: 11.0.0-264 WSA: 10.5.1-296 SMA: 11.0.0-115 Email Plug-in (Reporting): 1.0.1-048 Email Plug-in (Encryption): 1.0.0-036

New Member

Add a static host entry ?

Hi all.

Is there any way to add a static host entry to a C300 ESA?
I could not find anything like this in the GUI/CLI.

Every mail that goes from our internal mail gateways out through the C300s gets tagged with a Received header like this:

Received: from unknown (HELO mail1.ourdomain.com) ([x.x.x.x])
by mx1.ourdomain.com with ESMTP; 09 Dec 2009 01:53:21 +0100

which somewhat annoys me...

How can I make the reverse lookup match the HELO hostname?

5 REPLIES
New Member

Re: Add a static host entry ?

As far as I know, there is no way to do this in AsyncOS. You need to have your DNS servers resolve this address. If the internal mail server has an RFC1918 address then you'll need to configure your ESA to use your local DNS servers rather then the root servers. That's the only way to get correct resolution on locally administered addresses.

New Member

Re: Add a static host entry ?

OK, thanks for pointing to the DNS setup.
You can actually setup an alternate DNS server for a specific domain there, so I just needed to override my current (provider's) DNS servers for my reverse DNS zone (xx.xx.in-addr.arpa).

In my case, with only 2 internal mail servers relaying to the ESA, host entries would have been a simpler and more robust way to do it, but the DNS override does the job.

My outgoing Received headers now look pretty. :)

New Member

Re: Add a static host entry ?

You can actually setup an alternate DNS server for a specific domain there

That's news to me, but I haven't looked at those settings for several years.

My outgoing Received headers now look pretty.

But if your IP addresses are indeed RFC1918, then anyone looking up the host name in those pretty headers will either get an address they can't use, or the name simply won't resolve. Either way, the correctness of the situation is debatable. At least "unknown" is correct from an external point of view.

If you're using publicly routable addresses then the question becomes, why won't your ISP either put in correct PTR records for you or delegate to you?

New Member

Re: Add a static host entry ?

Yes, these are RFC1918 IPs.

My view on this is that Received headers are only here as a diagnostic tool.
No one is supposed to try to hack back to a random intermediate mail relay.

The "unknown" hostname just seemed to point to a misconfiguration, so I'd rather have a clean header.

New Member

Re: Add a static host entry ?

No one is supposed to try to hack back to a random intermediate mail relay.


No, but it is reasonable to expect the recipient to verify the path for any one of several reasons. Tracing back to a name that won't resolve could cause consternation or suspicion.

310
Views
0
Helpful
5
Replies