Chapter 68
E-Mail Proxy
IMAP generates a number of sessions that are not limited by the simultaneous user count but do count
Note
against the number of simultaneous logins allowed for a username. If the number of IMAP sessions
exceeds this maximum and the Clientless SSL VPN connection expires, a user cannot subsequently
establish a new connection. There are several solutions:
- The user can close the IMAP application to clear the sessions with the adaptive security appliance, and
then establish a new Clientless SSL VPN connection.
- The administrator can increase the simultaneous logins for IMAP users (Configuration > Features >
VPN > General > Group Policy > Edit Group Policy > General).
- Disable HTTPS/Piggyback authentication for e-mail proxy.
•
Modes
The following table shows the modes in which this feature is available:
Firewall Mode
Routed
•
Default Servers
This panel lets you identify proxy servers to the adaptive security appliance. Enter the IP address and
port of the appropriate proxy server.
OL-20339-01
Mailhost—(SMTPS only) Select to require mailhost authentication. This option appears for SMTPS
only because POP3S and IMAP4S always perform mailhost authentication. It requires the user's
e-mail username, server and password.
Security Context
Transparent Single
—
•
Multiple
Context
System
—
—
Cisco ASA 5500 Series Configuration Guide using ASDM
Default Servers
68-11