Hi,

bsrinu001 · ‎04-28-2017

Hi Team,

We are having large no of hard bounce/soft bounce messages, we are aware of the hard bounce messages will be automatically deleted after 24 hours and soft bounce will try to deliver messages after some intervals.

but needs to know, if the amount of Hard bounce is high how to delete it manually since consumes processing of the servers.

also please let me know why the TLS error : TLS failed: (336142563, 'error:140920E3:SSL routines:SSL3_GET_SERVER_HELLO:parse tlsext') is frequently seeing. Thank you

Libin Varghese · ‎04-28-2017

Hi,

Hard bounced emails are no longer processed, it just generates a notification back to the email sender letting them know that their email could not be delivered.

For emails that are soft bounced, the ESA keeps the emails in its delivery queue as per the bounce profile. If you wish to remove emails for certain domains from the appliance which are being soft bounced, you would need to use the command "deleterecipients".

Emails that are pending delivery in the delivery queue due to these soft bounces would take up resources in an effort to deliver these emails when possible. So a high number under Monitor -> Delivery Status would be a cause for concern.

For the TLS error mentioned.

This would be corrected by adjusting the outbound SMTP: SSL Ciphers to use: add -ECDH
Sample: MEDIUM:HIGH:!RC4:!SSLv2:!SSLv3:!aNULL:!EXPORT:@STRENGTH:-ECDH

Then test.

Elliptic curves extension in server hello is not tolerated by CiscoSSL
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCva00454

Workaround:
There are two options for working around this issue:

1) Disable TLS in Destination Controls for domains that have this issue
2) Add the following to the end of your outbound cipher specification in the 'sslconfig' CLI command: -ECDH

Thank You!

Libin Varghese

How to delete hard/soft bounce mesages from ESA and to rectifiy the TLS error.