Hi,
We have a Cisco ASA 5520 in our setup and in the dmz we have a postfix server, where we have applied a certificate and configured postfix to use that certificate.
When connecting from outlook 2007 using TLS from the inside and to the postfix server in the dmz it works, but when connecting from the outside to the postfix server it does not work.
When going from outside to the postfix traffic is passing through the asa 5520, but when going from the inside to the postfix server traffic is passing through a PIX501.
The ASA is running:
Cisco Adaptive Security Appliance Software Version 7.0(7)
Device Manager Version 5.0(7)
This is our inspection policy:
class-map inspection_default
match default-inspection-traffic
!
!
policy-map global_policy
class inspection_default
inspect dns maximum-length 512
inspect ftp
inspect rsh
inspect sqlnet
inspect xdmcp
inspect netbios
inspect tftp
policy-map policy_global
policy-map type
!
service-policy global_policy global
smtp-server <ip1> <ip2>
Cryptochecksum:xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
We have also allowed traffic on port 25 and that works for non TLS traffic.
We really need TLS to be allowed through the ASA.
Can somebody help with an answer?
Thanks.
