Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have setup an Ironport with TLS in prefered mode. If I telnet to the device and issue starttls it returns go ahead with tls which I take as a good sign. What I want to do it fully test it by actually sending an email via telnet over TLS. Can any...
I want to setup a content filter that does a certain action but I want the condition to be if the message came from an email address in a list of source addresses. I seem to only be able to apply one. I really dont want to have to create 200 condit...
I know the Ironport cluster is not like your traditional cluster where you have a VIP and redundant hardware to ensure seamless failover should a device fail. Im keen to hear then how others have achieved a Highly available state for incoming emails...
I know it is recomended to give an ironport ESA a public IP on a dedicated interface to take advantge of the reputation checking etc. I believe this is so it recieves the email frmo the original sender IP and if you put a relay between the Ironport ...
Can anyone help with what is probably a simple question. I will be pointing an ASA to use an RSA server fro 2 factor login using SDI. THere will be a primary and a replica (for redundancy) RSA server. Normally if you where pointing a windows machi...
Great that explains it thanks. From what im reading about ASA WCCP implemntation the client and the "proxy" have to both be reachable on the same interface as WCCP. You cant redirect the request to a "proxy" that might be sitting on a DMZ of anoth...
Awesome that helps. One last question. Assumig I dont want to restric them incoming I want them to be able to access any host inside my network. Do I need to create a rule or anykind to allow this incomign access or does the ASA just allow it?Tha...
I got this to work, there was a Xauth setting that I had to turn off to stop it from also asking for user credentials and it worked perfectly. It recognised the cert and verified it was issed by the CA I setup in the conifg.However this raises a bi...
Jason,So are you saying that I can connect a client VPN to an ASA with a non public IP provided another device infront of it e.g. a Juniper\Checkpoint firewall etc is doing one to one NAT for that ASA to a public IP?I thought you couldnt do that or ...
