05-22-2008 04:38 AM - edited 03-11-2019 05:48 AM
Does ASA support SMTP proxy? i am not sure if this is the right term but what i mean is like the cyberguard fw where they are entering all the valid email ids on the device and the firewall will not forward the packet to the smtp server if the email id is not one in the list.
thanks
05-22-2008 07:00 AM
If I'm correct, you need to configure ASA such that some specific email-ids only should be allowed to send mails through ASA.
You can do this on ASA, here is a example where only 3 email-ids are allowed to send mails through ASA (user1@cisco.com, user2@cisco.com, user3@cisco.com):
-----------------------------
regex user1 "user1@cisco.com"
regex user2 "user2@cisco.com"
regex user3 "user3@cisco.com"
class-map type regex match-any allowed-senders
match regex user1
match regex user2
match regex user3
policy-map type inspect esmtp filter-senders
parameters
match not sender-address regex class allowed-senders
reset log
match ehlo-reply-parameter others
mask
policy-map global_policy
class inspection_default
inspect esmtp filter-senders
service-policy global_policy global
-----------------------------
Here is a link which you can refer to:
http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/mpc.html
Hope this helps.
Regards,
Vibhor.
04-30-2021 04:54 PM
Sir , What is ASA esmtp proxy?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide