On Fri, 12 Oct 2001 10:30:53 +1000, Michael Shannon <[log in to unmask]>  said:
> We've recently installed a Cisco PIX firewall and it's creating some
> interesting situations for LISTSERV.  Has anyone else configured a PIX to
> co-exist peacefully with LISTSERV?  If so, please mail me privately as I'm
> very keen to have a chat and ask some advice.

The Cisco PIX is basically incompatible with modern SMTP in general. There
was a long thread about this product on the ietf-smtp list a few months
ago, and the general consensus was that the PIX is one of the most
brain-dead SMTP products out there (it is the ONLY thing that I know of
that is in wide deployment that doesn't even advertise ESMTP yet). There
was a strong minority opinion that it managed to go past "brain dead"
and into the "evil in its stupidity" category. There is hope for the
future, but that doesn't help the CURRENT software base. To quote Patrik
Fältström <[log in to unmask]>, on the ietf-smtp list:

> With my cisco hat on:

> - I know of historically three issues with the PIX:
>   1 The greeting message
>   2 (Proper) ESMTP handling
>   3 Problem with terminating '.' in the data command when the bytes
>     CR,LF,.,CR,LF ends up across a packet boundary

> Number 3 is fixed in a release of the software released in june. People
> should definitly upgrade. Fixed releases are 5.3(2) and 6.0(1).

> Number 1 and 2 are still on my list...

Good luck, and you have my condolences.

-- 
                                Valdis Kletnieks
                                Operating Systems Analyst
                                Virginia Tech