Ron, An RFC is an RFC. I'm sorry you find the PIX RFC 821 implementation "short sighted". There is / was no follow on to RFC 821. There has been much work and discussion but no consensus in the community.
Further, different vendors implementations of ESMTP vary wildly. As an extension of SMTP it creates many new interpretations of how mail transfers should work. We continue to look at ways of addressing the issue but to date we have not been able to identify a "silver bullet" that covers all or most of the cases. Many customers are using the PIX MailGuard feature and SMTP and not having any issues. Maybe we should move forward with a "fixup exchange" feature? What is your view of the systems that many are using? Liberty for All, Brian At 05:08 PM 11/21/2001 -0600, Ron DuFresne wrote: >So, I guess many of us then would like to know when cisco will address >this short sighted interpretation of the rfc and fix the pix to function >with the systems many are currently using? > >Thanks, > >Ron DuFresne > >On Wed, 21 Nov 2001, Brian Ford wrote: > > > Mike, > > > > The PIX SMTP fixup isn't broken. It's an interpretation of RFC 821 for > > SMTP. If you use it you need a SMTP compliant mail implementation. PIX > > then intercepts and scrubs certain commands and data that appear in those > > connections as per RFC 821. > > > > Postfix and other implementations work with fixup. Some Exchange > > implementations work. If you sniff the connection, or check the PIX logs > > you will see it is clearly due to their implementation of SMTP. > > > > The PIX fixup does not work if you are using ESMTP. That's clearly stated > > in the PIX documentation. RFC 821 was never extended to cover > > ESMTP. Many, many folks miss that point. > > > > Liberty for All, > > > > Brian > > > > At 12:04 PM 11/21/2001 -0800, Mike Hoskins <[EMAIL PROTECTED]> wrote: > > >Message: 6 > > >Date: Wed, 21 Nov 2001 11:54:04 -0800 (PST) > > >From: Mike Hoskins <[EMAIL PROTECTED]> > > >To: <[EMAIL PROTECTED]> > > >Subject: RE: PIX Mail problem > > > > > > > > > > From: "Hjorleifur Kristinsson" <[EMAIL PROTECTED]> > > > > CISCO "mail fixup rule" is broken in the PIX! > > > > > >It's broken, or Exchange is broken? I've got a few Postfix servers behind > > >PIX 515UR's, and haven't seen these problems. Exchange boxes (5.5 and > > >2000) drop messages left and right. > > > > > >I'd heard (quite awhile back) this was a 'known' issue with Exchange > > >servers running behind PIXen. Is it known to affect other/any protected > > >SMTP servers? > > > > > >Later, > > >-Mike > > > > _______________________________________________ > > Firewalls mailing list > > [EMAIL PROTECTED] > > http://lists.gnac.net/mailman/listinfo/firewalls > > > >~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ >"Cutting the space budget really restores my faith in humanity. It >eliminates dreams, goals, and ideals and lets us get straight to the >business of hate, debauchery, and self-annihilation." -- Johnny Hart > ***testing, only testing, and damn good at it too!*** > >OK, so you're a Ph.D. Just don't touch anything. _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
