One of our servers is sending a dump of its configuration to our vendor. This mail is fragmented and is always dropped by our Ironport applicance.
The mail is always sent to the same e-mail address (firstname.lastname@example.org), so I created a new outgoing policy. This policy has email@example.com as destination and virus scanning is disabled. But the mails are still dropped:
(192.168.111.21: 554 5.7.1 Fragmented emails are blocked.)
"Fragmented emails are blocked" is not an IronPort error message, this message is given by postfix when a "Content-type: message/partial" mail arrives.I believe this is some kind of Outlook functionality that splits messages with larger attachments into multiple parts, to get it trough gateways that have a size limit smaller than the attachment to be send. Obviously some mailserver do not like that because these splitted attachments can not be scanned for viruses.
According to Google Groups, this is the way to disable that functionality in Outlook:
Tools -> Accounts -> Mail -> Properties -> Advance
We explicitly block message/partials, and have done for years for fear that it's theoretically possible to get a virus past a signature-based anti-virus check that way. Never had any complaints. Does anyone know if this is a groundless fear?
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...