05-22-2020 03:22 AM
i dear friends, i have exchange server 2016 and this server connect to internet via cisco router 2911, when users send mail with attachment these mail stay in queue exchange server.but when i turn of zone based firewall mails send normaly.help plz.how can i resolve thise problem?
05-22-2020 03:24 AM
my config out to in on zone based firewall
Zone-pair name sdm-zp-NATOutsideToInside-1
Source-Zone out-zone Destination-Zone in-zone
service-policy sdm-pol-NATOutsideToInside-1
policy-map type inspect sdm-pol-NATOutsideToInside-1
class type inspect sdm-nat--1
inspect
class class-default
drop
class-map type inspect match-all sdm-nat--1
match access-group 101
match protocol tcp
Extended IP access list 101
10 permit tcp any host 10.10.0.9 eq smtp
20 permit tcp any host 10.10.0.9 eq 443
10.10.0.9 ip adress exchange server
05-22-2020 04:32 AM
05-22-2020 04:50 AM
Thank for link but i read.i can not understant what is incorrect on my config.because some domain i can send mail with attachment some i cannot.on my config i have not filter.and what blocked send mail
05-30-2020 04:30 AM
i read this link thank a lot.but i cannot understant why only mails with attachment cannot go throw router some domains?
examle i can send emal with attachment xxx.com but cannot yyy.com
05-30-2020 04:51 AM
i write acl permit ip any host ip_adress_domain and add this acl to class map. class map add to policy --pass
zone-pair source in dest out. but result is same
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide