找回密碼
 註冊
搜索
查看: 4668|回復: 0

Cisco PIX 8.x 解決寄信收件人過多時會被防火牆檔掉之問題

[複製鏈接]
發表於 2010-11-23 18:05:44 | 顯示全部樓層 |閱讀模式
The default SMTP Inspection policy blocks messages that match one of the following conditions:
Method line length greater than 512 bytes
More than 100 recipient email addresses set
Body line length greater than 998 bytes
Header line length greater than 998 bytes
Sender email address length greater than 320 bytes
Mime filename length greater than 255 bytes

如果寄信有超過以上限制就會被Firewall自動擋下來。

Block Example:
如果收件人數超過100人,則會被Firewall擋掉,並出現以下訊息:
ESMTP Classification: Dropped connection for ESMTP Request from inside:140.xxx.xxx.x/53034 to outside:140.xxx.xxx.xxx/25; matched Class 2: cmd RCPT count gt 100

解決方法:
將inspect esmtp直接關閉
  1. pix(config)#policy-map global_policy
  2. pix(config-pmap)#class inspection_default
  3. pix(config-pmap-c)#no inspect esmtp
  4. pix(config-pmap-c)#exit
  5. pix(config-pmap)#exit
複製代碼
Reference: http://www.cisco.com/en/US/produ ... 86a00806745b8.shtml
您需要登錄後才可以回帖 登錄 | 註冊

本版積分規則

Archiver|手機版|彩色筆小沛的知識庫

GMT+8, 2024-11-23 18:24 , Processed in 0.018494 second(s), 18 queries , Gzip On.

Powered by Discuz! X3.5

© 2001-2024 Discuz! Team.

快速回復 返回頂部 返回列表