I have this configuration on my ASA :
- outside (WAN) : 10.0.0.254
- inside (LAN) : 192.168.100.254
- dmz : 192.168.110.254
In my DMZ, I have a https server which can be accesible from internet. So I have created a nat rule to redirect the port 443 :
#> sh run static
static (DMZ,WAN) tcp interface https 192.168.110.1netmask 255.255.255.255
Moreover I have created a rule in the security policy to permit the https connection from WAN to DMZ.
My problem is that the https server can't send a mail from the DMZ. I have created this rule in the security policy but without effect :
in the DMZ
on the port any
in the WAN
on the port 25
ACTION : permit
When I do a telnet on the port 25 of a smtp server, I have a message TCP TIMEOUT in the live log.
What is the problem ?
Thanks for your help