08-30-2019 03:35 AM
Dear all
after configuring TLS in ESA (Destination control TLS preferred, Mail Policy-Default Policy Parameter TLS preferred). In order test it we send email and receive form different domains. It works as expected. But users complained that they were not able to send email to some domains. Actually they send email but other side not accept it. After checking TLS logs and message tracking i observed that email is sent from our ESA. but i don't understand why it didn't reach to destination. it is so urgent please help me to solve this problem.
08-30-2019 07:18 AM
08-31-2019 04:04 AM
Hi. dont you think if tls mismatch occurs then monitor tracking would show failed tls event? It shows it is successful.
09-01-2019 05:35 PM
09-02-2019 12:58 AM
Hi Pratham
all i see is
Message 1834733 to bob@test.com received remote SMTP response 'ok: Message 1054384 accepted' |
09-03-2019 04:33 AM - edited 09-03-2019 04:34 AM
I have this problem very often..nearly always a certificate problem.
check the destination domain with this site
https://de.ssl-tools.net/mailservers
maybe you need to install the certificate from the destination server.
You can get the certificate also from the site (screenshot 1.jpg )
https://de.ssl-tools.net/mailservers
Install the certificate on (cisco ESA)
/network/certificates-->Edit Settings --> Custom List (export List)--->insert the certificate (PEM format) and reinstall the list (screenshot 2.jpg)
09-03-2019 10:09 PM
Hi
We have mail.company.com certificate.But we have added Cisco ESA's default certificate. do you thing it would cause that issue?
I will test one more thing and i will turn you back with the result. thanks
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide