Disable ESMTP Inspection using FMC GUI
If you managing FTD using FMC, good to use FMC to disable inspection, rather command level in FTD, since FMC manages the config, manual config of FTD will be overridden when you deploy config from FMC.
Steps to follow disable ESMTP inspection :
- Login to FMC GUI
- Navigate to Object à FlexConfig à TextObject
- Open ‘disableInspectProtocolList’
- Add ‘esmtp’ to the list and Save
- Navigate to Devices à FlexConfig
- Create ‘New Policy’ or ‘Edit’ existing policy you have and is applied to the device you want to push this setting
- Select ‘Default_Inspection_Protocol_Disable’ from left tab and click right-arrow add button to add it to “Selected Prepend FlexConfigs”
- You can click on magnifying lens button to see the configuration it will push and verify it has ESMTP in the list
- Click on ‘Policy Assignment’ and add the device from the list you want to deploy this configuration to device.
- Save and Deploy the configuration
You see the code as below in the flexconfig box :
policy-map global_policy
class inspection_default
#foreach ( $protocol in $enableInspectProtocolList)
no inspect $protocol
#end Good Luck…Happy Labbbbbing