Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1400
Views
0
Helpful
5
Replies

For ESA 8.5.6 , I have a problem in CLI

Amira Saad
Level 1
Level 1

‎11-22-2016 02:07 AM

Dear All

I have a problem in CLI ssh for my cisco Ironport , and i got this message when enter

500 #5.5.1 command not recognized
421 Exceeded allowable connection time, disconnecting.

and it didn't appear in active sessions in GUI

Labels:
0 Helpful
5 Replies 5

Libin Varghese
Cisco Employee
Cisco Employee

‎11-22-2016 05:29 AM

Hi Amira,

This error indicates that a remote server connecting to the IronPort appliance has exceeded the "Total Time Limit for All Inbound Connections".

This only happens when the connection time reaches the configured timeout, in most configurations it will be 15 minutes. The Ironport then sends the soft bounce '421' error code and drops the connection.



This timeout parameter is configurable via the "Total Time Limit for All Inbound Connections" value, in the Global Settings of each listener. A mail server should close the connection after sucessful message transmission. If it does not the timeout triggers and the appliance cloese the connection. Generally, if a mailserver is taking over 5 minutes to send another SMTP command, there are likely issues on their end. If the same issue occurs often (for many different remote server connections), there may be an internal network issue on your end.

Thanks

Libin Varghese

0 Helpful

Amira Saad
Level 1
Level 1
In response to Libin Varghese

‎11-23-2016 12:34 AM

0 Helpful

Libin Varghese
Cisco Employee
Cisco Employee
In response to Amira Saad

‎11-23-2016 05:18 AM

Hi Amira,

These are the default recommended configuration values, as explained earlier the error would be seen if there is no data injected to the Ironport and the connection is left idle beyond the configured time.

- Libin

0 Helpful

Amira Saad
Level 1
Level 1
In response to Libin Varghese

‎12-18-2016 05:13 AM

it is solved by itself

0 Helpful

syeda3
Level 1
Level 1

‎01-24-2017 06:39 AM

Please see the below two urls which might be helpful to assist with your query.

http://www.cisco.com/c/dam/en/us/td/docs/security/esa/esa8-5-6/ESA_8-5-6_CLI_Reference_Guide.pdf

http://www.cisco.com/c/dam/en/us/td/docs/security/esa/esa8-5-6/ESA_8-5-6_User_Guide.pdf

There are many defects filed for ESA which can be checked from the below Bug Tool.

https://bst.cloudapps.cisco.com/bugsearch/

Hope to help.

0 Helpful
Customers Also Viewed These Support Documents