01-15-2013 01:48 PM - last edited on 03-25-2019 05:49 PM by ciscomoderator
I have a client that is running an ASA5512-X. When I initially installed it, they were having issues sending out emails. I disabled ESMTP inspection and thought it resolved the issue. Recently, they upgraded to Exchange 2010 and are still having an issue with some emails getting hung up in the queue. If I watch the ASA when they try to telnet to the external mail servers that do not work, they get a SYN timeout.
I am not sure why this would happen since ESMTP is disabled. They are running 8.6(1) on the ASA.
TIA,
Dan
01-16-2013 10:01 AM
Hello Deyster,
Next step would be to take captures on the ASA to analize why this is not working.
Captures an logs my friend
Regards
01-16-2013 12:05 PM
you need to ask yourself this question: do I need to run version 8.6(1). If you downgrade to a lower version, will that work?
IMHO, it is much easier to downgrade to another version and see it if it works instead of troubleshooting this. Let Cisco TAC figure this out themselves.
For the record, I use Exchange2010 with Pix 515E with version 8.0.4 and it works without any issues.
01-16-2013 12:09 PM
This is an ASA5512-X and 8.6(1) is the first version out for this model. Unfortunately, I cannot downgrade this ASA.
01-16-2013 12:13 PM
If you have issue with ESTMP, then it is also likely that you will have issue with sqlnet as well . In other words, you're at the mercy of Cisco to come up with a fix
01-16-2013 12:46 PM
I did a packet capture and it really didn't show me much other than the connection fails with a TCP SYN Timeout. What I don't get is why does this only happen with some mail servers.
Edit: I noticed I was looking at the wrong IP address for the packet captures. Going to do some more to see what I can find.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide