10-09-2001 02:22 PM - edited 03-08-2019 08:50 PM
I'm having trouble getting SMTP AUTH to work on our network, even across network segments that have no specific access-list rules between them. Perhaps there's something in the CBAC setting that prevents AUTH from working properly?
Initially...
Our mail server software with relay enabled for everybody...external clients sent message, and it goes through fine.
Disable relay...
external clients sent message, server replies with "relay not permitted" (expected, good)
Enabled AUTH on server and set clients to authenticate...
external cleints sent message, get back error message...
"Your server has unexpectedly terminated the connection. Possible causes for
this include server problems, network problems, or a long period of
inactivity. Account: 'me@mydomain.com', Server:
'mailserver.mydomain.com', Protocol: SMTP, Port: 25, Secure(SSL): No, Socket
Error: 10053, Error Number: 0x800CCC0F
Removed firewall and no longer had problem. External clients authenticate fine and mail is sent, and bad people can't relay mail through our server.
What in the firewall config prevents SMTP AUTH? We're using Cisco 2514 with 11.3
10-09-2001 03:58 PM
The Cisco IOS firewall has a built-in feature that assures that snmp conforms to the recommendations listed in RFC 821, section 4.5.1. This section lists the commands that should be allowed through a firewall (HELO, MAIL, RCTP, DATA, RSET, NOOP and QUIT). The cisco IOS firewall is configured to allow only the above commands and disallow any other command. You can disable this feature by typing 'no ip inspect -name- smtp'. SNMP will still be allowed (if permitted by rules), but the IOS FW will not check for imbedded commands in SMTP.
I hope this helps.
10-10-2001 08:07 AM
That was exactly my problem. Thanks so much for your help.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide