Cisco Firewall Disabling TLS Initiation by Default

By default, the Cisco ASA will block STARTTLS initiation because of the SMTP packet inspection. One of the following options will enable the Cisco ASA to start TLS on ESTMP sessions...

 Option 1)

policy-map type inspect esmtp esmtp_map
parameters
allow-tls [action log]

Option 2)

no fixup protocol smtp 25


  • 9 Users Found This Useful
Was this answer helpful?

Related Articles

Adding Users to ASA

1. Launch ASDM client 2. Sign In as administrator 3. Go to Configuration at the top of the screen...

Changing Password on ASA

1. Launch ASDM client 2. Sign in as administrator 3. Go to Configuration at the top of the screen...

Cisco AnyConnect Failed to Initialize Connection Subsystem

This issue was introduced with Microsoft KB# 3023607: Secure Channel cumulative update changes...

Multiple Subnets on Cisco ASA

Using a subnet directly on the DMZ segments to avoid any special needs regarding the NAT and DNS...

Quickkstart (including IPsec)

The first step is to install the VPN client on your desktop computer.  The Quick start guide does...