Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1344
Views
0
Helpful
1
Replies

Attachments fail to deliver after enabling TLS on incoming listners

skc455
Level 1
Level 1

‎10-22-2020 08:16 PM

Hi, I had a weird issue today, wanted to see if anyone else had experienced the same, if so how did you resolve it?

 

We have two ironport appliances running in cluster mode. I have enabled TLS preferred verify under mail flow policies << InboundMail policy. Since I have enabled none of our internal employees were receiving emails with attachments. Emails without attachments are delivered okay. Only those which have attachments are not being delivered. We are using default ironport cert for now. 

Labels:
0 Helpful
1 Reply 1

Libin Varghese
Cisco Employee
Cisco Employee

‎11-01-2020 10:49 PM

The only reason I can currently think of would be a firewall/proxy inspecting SSL packets and silently dropping them or interrupting it some other way.

You may want to ensure there is no SSL inspection being done in the network.

Apart from that it would require packet captures to be setup on the ESA to see what's going on during the SSL handshake and later when an attachment is sent.

 

Regards,

Libin

0 Helpful
Customers Also Viewed These Support Documents