Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

ASA5510 SMTP TLS broken with packet inspection enable

Hi all

Cisco ASA5510 running 8.0(4)32

It appears that with the esmtp packet inspection enabled, smtp with TLS packets will not go through the firewall. If esmtp packet inspection is disabled this works fine.

I have tried to allow TLS packets, but this does not work either.

## policy-map type inspect esmtp esmtp_map

## parameters

## allow-tls

According to Cisco TAC, ASA does not support TLS, and will not be supported any time soon.

Has anyone had any succes with SMTP TLS, Can anyone recommend a work-around besides disabling inspection.

Any advice would be very appreciated, especially as our client has lost quite a bit of faith in our ability to secure their email services.

TIA

918
Views
0
Helpful
0
Replies
CreatePlease to create content