Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

fixup smtp issue

When I have "fixup protocol smtp 25", We get thousands of errors on the smtp servers (sendmail) that say "timeout waiting for input". When I "no" the fixup, everything works great. Has anyone seen this? I have not found anything in the bug reports yet.

5 REPLIES
New Member

Re: fixup smtp issue

I to have seen this. I always use the no fixup smtp 25 command on the PIX. The fixup protocol is a good idea, but until all sendmail servers are updated or migrated to Exchange server, older sendmail servers seem to have a problem.

Dave

New Member

Re: fixup smtp issue

My company is an asp that provides online marketing using e-mail. We also use no fixup for smtp. When fixup is enabled, it blocks the standard smtp message with **********. You can test this by doing a telnet hostname 25. Without SMTP fixup, when you telnet, you will be able to view the smtp header message: 220 tester.responsys.com ESMTP Server (Microsoft Exchange Internet Mail Servic

e 5.5.2653.13) ready. Fixup masks this message and causes issue with smtp servers.

mac
New Member

Re: fixup smtp issue

Had the same problem with MS Exchange 2k. When you would telnet to port 25 on the outside you would get garbage in 5.1(1), but after adding no fixup smtp 25 it worked fine.

Cisco Employee

Re: fixup smtp issue

7sboals,

Hmm. If you mail server responds "ESMTP Server" as you posted then you shouldn't be using SMTP fixup. You are not using SMTP; you are using ESMTP. While they are compatible with each other, the fixup works in environments using SMTP.

Liberty for All,

Brian

Cisco Employee

Re: fixup smtp issue

Craig,

The PIX SMTP Fixup is an implementation of IETF RFC 821 for screening SMTP traffic. It assumes that it is between two mail servers communicating via SMTP. If one of the mail servers implementation of SMTP is bad, or if the servers are using ESMTP then this fixup doesn't work.

Liberty for All,

Brian

870
Views
0
Helpful
5
Replies
CreatePlease to create content