Cisco Cisco Email Security Appliance C170 Guia Do Utilizador
Chapter 2 Customizing Listeners
2-62
Cisco IronPort AsyncOS 7.3 for Email Advanced Configuration Guide
OL-23081-01
•
the IronPort appliance has sent a "Must issue a STARTTLS command first"
command, and
command, and
•
the connection is closed without having received any successful recipients.
Information on why the TLS connection failed will be included in the mail logs.
GUI Example
To change the TLS setting for a HAT mail flow policy for a listener via the GUI,
follow these steps:
follow these steps:
Step 1
From the Mail Flow Policies page, choose a listener whose policies you want to
modify, and then click the link for the name of policy to edit. (You can also edit
the Default Policy Parameters.)
modify, and then click the link for the name of policy to edit. (You can also edit
the Default Policy Parameters.)
The Edit Mail Flow Policies page is displayed.
Step 2
In the “Encryption and Authentication” section, for the “TLS:” field, choose the
level of TLS you want for the listener.
level of TLS you want for the listener.
Figure 2-19
Requiring TLS in a Listener’s Mail Flow Policy Parameters
Step 3
Submit and commit your changes.
The mail flow policy for the listener is updated with the TLS setting you
chose.
chose.
CLI Example
To change the default TLS setting for a listener via the CLI, follow these steps:
Step 1
Use the
listenerconfig -> edit
command to choose a listener you want to
configure.
Step 2
Use the
hostaccess -> default
command to edit the listener’s default HAT
settings.