天下网吧 >> 网吧天地 >> 网吧技术 >> 网吧软件 >> 正文

cisco pix防火墙接管smtp

2011-6-30不详佚名

现象:
    telnet
    mail.aaaaaaaaaaaaaa.com 25
    Trying ddd.ddd.ddd.ddd…
    Connected to mail.aaaaaaaaaaaaaa.com.
    Escape character is '^]'.
    220 ****0**********************************
    ehlo aaaaaaaaaaaaaa.com
    502 Error: command not implemented
    helo aaaaaaaaaaaaaa.com
    250 mail01.aaaaaaaaaaaaaa.com
    ehlo aaaaaaaaaaaaaa.com
    502 Error: command not implemented
    连接后出现
    220 ****0**********************************
    并且不支持ESMTP
    解决办法:
    no fixup protocol smtp 25
    If you're getting the *** banner, and EHLO not recognised and you have a PIX
    in the way, it's fixup, and there's nothing else you can do. To give ammo if
    you need it, Cisco deprecated fixup in v7 of the PIX OS, due to it not
    understanding anything beyond RFC 821.
    From their own docs:
    The fixup protocol smtp command enables the Mail Guard feature. This restricts
    mail servers to receiving the seven minimal commands defined in RFC 821,
    section 4.5.1 (HELO, MAIL, RCPT, DATA, RSET, NOOP, and QUIT)。 All other
    commands are rejected.
    Microsoft Exchange server does not strictly comply with RFC 821 section 4.5.1,
    using extended SMTP commands such as EHLO. PIX Firewall will convert any such
    commands into NOOP commands, which as specified by the RFC, forces SMTP
    servers to fall back to using minimal SMTP commands only. This may cause
    Microsoft Outlook clients and Exchange servers to function unpredictably when
    their connection passes through PIX Firewall.

本文来源:不详 作者:佚名

声明
声明:本站所发表的文章、评论及图片仅代表作者本人观点,与本站立场无关。文章是出于传递更多信息之目的。若有来源标注错误或侵犯了您的合法权益,请作者持权属证明与本网联系,我们将及时更正、删除,谢谢。 Email:support@txwb.com,系统开号,技术支持,服务联系微信:_WX_1_本站所有有注明来源为天下网吧或天下网吧论坛的原创作品,各位转载时请注明来源链接!
天下网吧·网吧天下
  • 本周热门
  • 本月热门
  • 阅读排行