Mike, The PIX SMTP fixup isn't broken. It's an interpretation of RFC 821 for SMTP. If you use it you need a SMTP compliant mail implementation. PIX then intercepts and scrubs certain commands and data that appear in those connections as per RFC 821.
Postfix and other implementations work with fixup. Some Exchange implementations work. If you sniff the connection, or check the PIX logs you will see it is clearly due to their implementation of SMTP. The PIX fixup does not work if you are using ESMTP. That's clearly stated in the PIX documentation. RFC 821 was never extended to cover ESMTP. Many, many folks miss that point. Liberty for All, Brian At 12:04 PM 11/21/2001 -0800, Mike Hoskins <[EMAIL PROTECTED]> wrote: >Message: 6 >Date: Wed, 21 Nov 2001 11:54:04 -0800 (PST) >From: Mike Hoskins <[EMAIL PROTECTED]> >To: <[EMAIL PROTECTED]> >Subject: RE: PIX Mail problem > > > > From: "Hjorleifur Kristinsson" <[EMAIL PROTECTED]> > > CISCO "mail fixup rule" is broken in the PIX! > >It's broken, or Exchange is broken? I've got a few Postfix servers behind >PIX 515UR's, and haven't seen these problems. Exchange boxes (5.5 and >2000) drop messages left and right. > >I'd heard (quite awhile back) this was a 'known' issue with Exchange >servers running behind PIXen. Is it known to affect other/any protected >SMTP servers? > >Later, >-Mike _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
