https://community.cisco.com/t5/network-security/asa-8-4x-esmtp-inspection-bug-csctr92976/m-p/1965127#M400966 <HTML><HEAD></HEAD><BODY><P>It quite blatantly just doesn't work.&nbsp; I am reluctant to downgrade to 8.2 or earlier because of the NAT issues I will inevitably hit.&nbsp; I'll try 8.3 on the lab 5505 and see how this behaves - I suspect it will be the same.</P><P></P><P>How can Cisco get away with not fixing this if its been around since PIX days?</P><P></P><P>Andy</P></BODY></HTML> Fri, 10 Aug 2012 22:48:14 GMT andrew.butterworth 2012-08-10T22:48:14Z https://community.cisco.com/t5/network-security/asa-8-4x-esmtp-inspection-bug-csctr92976/m-p/1965125#M400964 <P>We have several customers running ASA 8.4x code and all seem to be plagued with the ESMTP inspection bug CSCtr92976.</P><P>I have tested this in the lab with an ASA 5505 running 8.4(1), 8.4(2) and 8.4(4)1 &amp; 8.4(4)3 and the behaviour is always the same.&nbsp; I have an Exchange 2007 server and I can see in the logs the following messages:</P><P></P><P>2012-08-10T13:04:37.331Z,EXCHANGE\Default EXCHANGE,08CF3610468A42D7,3,192.168.102.28:25,192.168.250.26:52756,&lt;,XXXX XXXXXXXXXXXXXXX,</P><P>2012-08-10T13:04:42.345Z,EXCHANGE\Default EXCHANGE,08CF3610468A42D7,4,192.168.102.28:25,192.168.250.26:52756,&gt;,500 5.3.3 Unrecognized command,</P><P>2012-08-10T13:05:20.506Z,EXCHANGE\Default EXCHANGE,08CF3610468A42D7,5,192.168.102.28:25,192.168.250.26:52756,&lt;,XXX,</P><P></P><P>This is with the default ESMTP inspection enabled.&nbsp; I have also created a custom ESMTP inspection policy that does nothing but log and the behaviour is still the same.&nbsp; Sometimes traffic will pass but most of the time it won't.&nbsp; The workaround is to just disable the ESMTP inspection but I don't like the idea of this.</P><P></P><P>Any idea when this will be fixed or if there is some other magic workaround?</P><P></P><P>Andy</P> Mon, 11 Mar 2019 23:40:53 GMT https://community.cisco.com/t5/network-security/asa-8-4x-esmtp-inspection-bug-csctr92976/m-p/1965125#M400964 andrew.butterworth 2019-03-11T23:40:53Z https://community.cisco.com/t5/network-security/asa-8-4x-esmtp-inspection-bug-csctr92976/m-p/1965126#M400965 <HTML><HEAD></HEAD><BODY><P>Will it ever be? The ESMTP-inspection is somehow the successor of the "Mailguard". And that was the worst function for nearly every mail-administrator in the past with PIX firewalls on the network ...</P><P>It got better with the ESMTP-inspection, but I assume the troble will never end. I typically disable it. The mailserver is protected by the mail-relay in the DMZ and the mail-relay has to protect himself.</P><P></P><P>--&nbsp; <BR />Don't stop after you've improved your network! Improve the world by lending money to the working poor: <BR /><A class="jive-link-external-small" href="http://www.kiva.org/invitedby/karsteni">http://www.kiva.org/invitedby/karsteni</A></P></BODY></HTML> Fri, 10 Aug 2012 19:06:18 GMT https://community.cisco.com/t5/network-security/asa-8-4x-esmtp-inspection-bug-csctr92976/m-p/1965126#M400965 Karsten Iwen 2012-08-10T19:06:18Z https://community.cisco.com/t5/network-security/asa-8-4x-esmtp-inspection-bug-csctr92976/m-p/1965127#M400966 <HTML><HEAD></HEAD><BODY><P>It quite blatantly just doesn't work.&nbsp; I am reluctant to downgrade to 8.2 or earlier because of the NAT issues I will inevitably hit.&nbsp; I'll try 8.3 on the lab 5505 and see how this behaves - I suspect it will be the same.</P><P></P><P>How can Cisco get away with not fixing this if its been around since PIX days?</P><P></P><P>Andy</P></BODY></HTML> Fri, 10 Aug 2012 22:48:14 GMT https://community.cisco.com/t5/network-security/asa-8-4x-esmtp-inspection-bug-csctr92976/m-p/1965127#M400966 andrew.butterworth 2012-08-10T22:48:14Z