Firewall Wizards mailing list archives

RE: Exchange Server 2000 and Cisco Pix

From: shewitt () cdw com
Date: Thu, 24 May 2001 10:30:34 -0500

Yes, you will want to disable the SMTP fixup.  It causes a lot of problems
with exchange.  Use the command: "no fixup protocol smtp 25" to disable it.

It acts as a proxy to the smtp server by filtering the commands that it
sends to the server.  In doing this, it tends to cause problems with the
sending and receiving server.

There is also a known bug that keeps biting me regarding how the PIX handles
the end of a SMTP message.  If the end of message signifier . <CRLF> come in
on seperate packets, the pix doesn't recognize it as the end of the e-mail.
Because of this, the PIX never acknowledges that the message was received
successfully.  So, my local SMTP server keeps resending the message to the
client.  

There is a documented PIX bug on cisco's site.  They have fixed the bug and
it is in the newer releases of PIX software.

Check out the bug if you have a CCO login
<http://www.cisco.com/cgi-bin/Support/Bugtool/onebug.pl?bugid=CSCds90792>


-----Original Message-----
From: Christoph Puetz [mailto:puetzc () yahoo com]
Sent: May 21, 2001 11:55 AM
To: firewall-wizards () nfr com
Subject: [fw-wiz] Exchange Server 2000 and Cisco Pix


Hello wizards,

I have a newly installed Exchange Server 2000 behind
my Pix and did receive an error from a mail client
when trying to connect to the Exchange server.
Microsoft refers to Cisco without really being
specific - at least I could not find the solution at
Cisco's web page. Anyone here knows what I have to do?

Here's MS solution (Article ID: Q295164) for the
problem:

"RESOLUTION
To resolve this issue, disable SMTP inspection on the
firewall. If you do not know the command to disable
SMTP inspection, contact Cisco." 

Is this the fixup command I have to use and disable
smtp? 

Thanks for your help in advance!

C.

__________________________________________________
Do You Yahoo!?
Yahoo! Auctions - buy the things you want at great prices
http://auctions.yahoo.com/
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards

Current thread:

Re: Exchange Server 2000 and Cisco Pix Curt Wilson (May 24)
- <Possible follow-ups>
- RE: Exchange Server 2000 and Cisco Pix yehuda (May 24)
- RE:Exchange Server 2000 and Cisco Pix Payne, Patrick (May 24)
- Re: Exchange Server 2000 and Cisco Pix Brian Ford (May 24)
- RE: Exchange Server 2000 and Cisco Pix shewitt (May 25)
- RE: Exchange Server 2000 and Cisco Pix anthonyverrill (May 25)