This would be a proctor question so doing both covers it as well. Drop connection or reset would work for the question as it doesn't specify what action to take to stop the traffic.
Regards, Tyson Scott - CCIE #13513 R&S, Security, and SP Managing Partner / Sr. Instructor - IPexpert, Inc. Mailto: <mailto:[email protected]> [email protected] Telephone: +1.810.326.1444, ext. 208 Live Assistance, Please visit: <http://www.ipexpert.com/chat> www.ipexpert.com/chat eFax: +1.810.454.0130 IPexpert is a premier provider of Self-Study Workbooks, Video on Demand, Audio Tools, Online Hardware Rental and Classroom Training for the Cisco CCIE (R&S, Voice, Security & Service Provider) certification(s) with training locations throughout the United States, Europe, South Asia and Australia. Be sure to visit our online communities at <http://www.ipexpert.com/communities> www.ipexpert.com/communities and our public website at <http://www.ipexpert.com/> www.ipexpert.com From: [email protected] [mailto:[email protected]] On Behalf Of Kingsley Charles Sent: Monday, August 23, 2010 4:59 AM To: Yogesh Gawankar Cc: [email protected] Subject: Re: [OSL | CCIE_Security] Vol 1 - ASA - Section 1.11 Hi Yogesh True, but since it is asked to check for domain, I am not sure which to configure, hence I have both of them for reference. With regards Kings On Mon, Aug 23, 2010 at 2:26 PM, Yogesh Gawankar <[email protected]> wrote: HI Kings This will drop email sent from badspammer.com but allow it to be sent to badspammer.com. Not sure if this is what is desired. Thanks and regards Yogesh --- On Mon, 8/23/10, Kingsley Charles <[email protected]> wrote: From: Kingsley Charles <[email protected]> Subject: [OSL | CCIE_Security] Vol 1 - ASA - Section 1.11 To: [email protected] Date: Monday, August 23, 2010, 6:51 PM Hi all Section 1.11 asks us to configure a SMTP MPF to check for domain "badspammer.com <http://badspammer.com/> ". Since the domain keyword is present, it could refer to either "mail-relay" or "sender's domain-name". The solution has "sender-address regex". I have put both: regex email "badspammer.com <http://badspammer.com/> " policy-map type inspect esmtp esmtppol parameters mail-relay badspammar.com <http://badspammar.com/> action drop-connection match sender-address regex email drop-connection Please share your thoughts. With regards Kings -----Inline Attachment Follows----- _______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
