I have a 2811 router with an IOS Firewall and I'm trying to enable smtp through. I've added smtp to the access lists but no joy. I even disabled the access lists and applied one with permit tcp any any and still no joy. I'm suspecting the ip inspect list of which I know nothing but I'll post the config here:
ffmrouter#sho ip inspect config Dropped packet logging is enabled Session audit trail is disabled Session alert is enabled one-minute (sampling period) thresholds are [400:500] connections max-incomplete sessions thresholds are [400:500] max-incomplete tcp connections per host is 50. Block-time 0 minute. tcp synwait-time is 30 sec -- tcp finwait-time is 5 sec tcp idle-time is 3600 sec -- udp idle-time is 30 sec dns-timeout is 5 sec Inspection Rule Configuration Inspection name SDM_HIGH icmp alert is on audit-trail is off timeout 10 pop3 reset is on alert is on audit-trail is off timeout 3600 tcp alert is on audit-trail is off timeout 3600 udp alert is on audit-trail is off timeout 30 https alert is on audit-trail is off timeout 3600 Application Policy name SDM_HIGH Application http strict-http action allow alarm port-misuse tunneling action reset alarm
I tried removing the policy from the inide and outside interfaces but lost internet access! Can anyone tell me how I can debug this, or am I barking up the wrong tree?
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...