07-25-2018 09:49 PM - edited 03-12-2019 06:50 AM
Hi,
I am getting the below log in my mail server while sending mails.
Jun 25 15:52:39 xxxxxxx postfix/smtpd[12595]: disconnect from localhost[127.0.0.1]
Jun 25 15:52:39 xxxxxxx postfix/qmgr[12566]: 32204DF9FE: from=<root@-----.org>, size=602, nrcpt=1 (queue active)
Jun 25 15:52:39 xxxxxxx postfix/smtp[12599]: 32204DF9FE: enabling PIX workarounds: disable_esmtp delay_dotcrlf for xxx.xxx.xxx.xxx[]:25
Jun 25 15:52:40 xxxxxxx postfix/smtp[12599]: 32204DF9FE: to=<jexxx@----.co.-->, relay=xxx.xxx.xxx.xxx[xxx.xxx.xxx.xxx]:25, delay=1, delays=0.05/0/0.59/0.4, dsn=5.7.1, status=bounced (host xxx.xxx.xxx.xxx[xxx.xxx.xxx.xxx] said: 554 5.7.1 <jexxx@----.co.-->: Relay access denied (in reply to RCPT TO command))
Any help on how to disable ESMTP in FirePOWER?
07-26-2018 04:49 AM
IF you are using ASA with Firepower services, this would be disabled on the ASA (LINA) CLI using the following commands:
policy-map global_policy
class inspection_default
no inspect esmtp
If using Firepower threat Defense (FTD), then you would have to make use of Flexcofnfig to push this change to the LINA side.
1) Edit the Flex config text object "disableInspectProtocolList" with esmtp
2) Create a new Flex Config Policy and append the "Default_Inspection_Protocol_Disable" Flexconfig object to it.
3) Deploy to device.
Note: Esmtp inspection was already disabled on my FTD device.
07-30-2018 04:46 AM
Hi Sam,
An easy way would be to just use the following:
>configure inspection esmtp disable
If you are running pure FTD.
/Nikolaj
11-28-2022 11:37 PM
how i configure no esmtp inspect with the FDM on my firepower 1120
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide