11-07-2007 03:56 PM - edited 02-21-2020 01:46 AM
We have an exchange server on our internal network. The MX record is pointed to a 2nd IP address on our T-1. I am trying to set up a translation rule to forward the mail to our interal exchange server.
Anyone know of a document that explains how to do this?
I guess what I'm trying to figure out first is how do I "grab" that other IP so when a packet goes to it NAT knows to forward it inside to exchange.
11-07-2007 11:49 PM
Hi
Is the 2nd ip address in the same subnet as the outside interface of your pix ? If so
static (inside,outside) "2nd ip address" "internal mail server ip address"
If the 2nd ip address is not in same subnet you need to make sure that any traffic sent to that ip address gets routed to the outside interface of the pix and then you can use the above static statement.
HTH
Jon
11-08-2007 04:24 AM
It is. We have a range of 5 IPs. One is our main interface, 1 for mail, 1 for web sites, 1 TBD.
So if I do this, I assume I'll need to put rules in place to allow SMTP, HTTP or whatever to the 2nd IP address.
11-08-2007 04:33 AM
Yes you do need rules. So assuming the public IP address is 212.10.33.15 your line for mail access would be
access-list inbound permit tcp any host 212.10.33.15 eq 25
Jon
11-08-2007 07:08 AM
Okay. I tried this but as yet it's not working. I ran these commands command line and when I run it again it says there is already an existing rule so I know it's saving. But when I go into the PDM I don't see this ACL anywhere. Shouldn't that be in Access Rules?
11-08-2007 07:11 AM
In my experience PDM and the CLI do not always work well together.
Can you post the config so we can have a look at what might be the problem
Jon
11-08-2007 10:35 AM
I haven't had a chance to actually try if these changes have worked yet. A rule is a rule isn't it? If I close the PDM and come back in and I put access rules in using CLI shoudn't they show up? Just curious. I'll upload my config later on.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide