https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3222437#M14755 Thanks Flavio, I think it is the Firewall. On the local LAN I can telnet on smtp 25 onto their mail server and get the banner. Only from outside Public internet I hit the problem. Thanks for your input. Another set of eyes on it is helpful.<BR /><BR />Has anyone else got an insight as to what could be the cause<BR /><BR />Dave<BR /> Sat, 25 Nov 2017 17:02:16 GMT davidfield 2017-11-25T17:02:16Z https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3222254#M14750 <P>Content Removed</P> Fri, 21 Feb 2020 14:49:45 GMT https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3222254#M14750 davidfield 2020-02-21T14:49:45Z https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3222263#M14751 <P>I've tried to apply a PolicyMap/Class Map for the Mailserver source IP address to not match ESMTP for the internal IP 192.168.150.3 .&nbsp; No change.</P> <P>&nbsp;</P> <P>access-list ESMTP deny ip host 192.168.150.3 any<BR />access-list ESMTP permit ip 192.168.150.0 255.255.255.0 any</P> <P>class-map CMAP<BR />match access-list ESMTP</P> <P>policy-map PMAP<BR />class CMAP<BR />inspect esmtp</P> <P>service-policy PMAP interface inside</P> <P>&nbsp;</P> <P>&nbsp;</P> Fri, 24 Nov 2017 21:50:42 GMT https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3222263#M14751 davidfield 2017-11-24T21:50:42Z https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3222267#M14752 <P>Hi <a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/321940">@davidfield</a></P> <P>Sorry if I miss something. I understood that you are trying hard disable inspect for smtp but what is your problem? I assume that smtp service is not working but can you give more information about the environment and the problem?</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>-If I helped you somehow, please, rate it as useful.-</P> Fri, 24 Nov 2017 21:59:20 GMT https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3222267#M14752 Flavio Miranda 2017-11-24T21:59:20Z https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3222270#M14753 <P>Hi Flavio,</P> <P>&nbsp;</P> <P>SMTP traffic is passing to the Server but the ASA is interfering with the contents.</P> <P>&nbsp;</P> <P>I don't manage the Mailserver and this being a new Firewall and Exchange server the Server guys are refusing to accept the network Firewall config as Operational for handover&nbsp;until they see the banner.&nbsp; I've advised them that the inspection just restricts less used&nbsp;commands and the banner from being read but they will not have it.&nbsp;&nbsp;</P> <P><BR />What we see at the moment when telneting to IP on port 25</P> <P><FONT color="#FF0000">telnet&nbsp;59.147.41.134 25&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;- not the real IP addr</FONT></P> <P><FONT color="#FF0000">220 ************************************************************</FONT></P> <P><FONT color="#FF0000">&nbsp;</FONT></P> <P><FONT color="#FF0000">500 5.3.3 Unrecognized command</FONT><BR /><FONT color="#FF0000">500 5.3.3 Unrecognized command</FONT></P> <P>&nbsp;</P> <P>Regards</P> <P>David</P> Fri, 24 Nov 2017 22:06:37 GMT https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3222270#M14753 davidfield 2017-11-24T22:06:37Z https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3222274#M14754 <P>I am not exchange expert by no means but I think you did your job with firewall so maybe is time to think in something else.</P> <P>&nbsp;For example, looking at Microsoft docs, I read this:</P> <P><SPAN class="text-base">Numeric Code:</SPAN><SPAN>&nbsp;5.3.3</SPAN><BR /><BR /><SPAN class="text-base">Possible Cause:</SPAN><SPAN>&nbsp;The Exchange 2000 remote server or the Exchange 2003 remote server is out of disk storage to hold mail. This problem occurs most frequently when the sending server sends mail that includes binary DATA (BDAT). This code may also indicate an SMTP protocol error.</SPAN></P> <P>"</P> <P>&nbsp;</P> <P>-If I helped you somehow, please, rate it as useful.-</P> Fri, 24 Nov 2017 22:15:43 GMT https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3222274#M14754 Flavio Miranda 2017-11-24T22:15:43Z https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3222437#M14755 Thanks Flavio, I think it is the Firewall. On the local LAN I can telnet on smtp 25 onto their mail server and get the banner. Only from outside Public internet I hit the problem. Thanks for your input. Another set of eyes on it is helpful.<BR /><BR />Has anyone else got an insight as to what could be the cause<BR /><BR />Dave<BR /> Sat, 25 Nov 2017 17:02:16 GMT https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3222437#M14755 davidfield 2017-11-25T17:02:16Z https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3908385#M14756 <P>I had this exact same problem, and when I REMOVED the "fixup protocol smtp 25" parameter, it fixed the issue.</P> Wed, 14 Aug 2019 21:57:04 GMT https://community.cisco.com/t5/network-security/smtp-telnet-obscured-banner-220-esmtp-no-inspect-esmpt-and-fixup/m-p/3908385#M14756 beatinger 2019-08-14T21:57:04Z