port 25 redirect setup

Unanswered Question
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
kevin.jones1 Wed, 11/28/2007 - 14:27
User Badges:

static (inside,outside) tcp interface 25 10.1.1.1 25 netmask 255.255.255.255


access-list External permit tcp any host outside_interface_ip eq 25 log


access-group External in interface outside


Easy right?

Looks easy enough, however I am not too familiar with the command syntax with the pix firewall... I assume I type in each line as you have it above one line at a time? How would I un-do this if it did not work properly? Where do I insert the IP address which I want the incoming SMTP traffic to go to? Is there a way to set this up using the web interface and not the command prompt?

sbaddipudi Wed, 11/28/2007 - 14:59
User Badges:

Peter,

you could do a no in front of those commands to remove them. There is a GUI interface if you like it -- PDM I think...


Satya

acomiskey Thu, 11/29/2007 - 09:12
User Badges:
  • Green, 3000 points or more

No, it is the ip that you are using to hit from the outside. If you are using the ip off the outside interface then you can do


access-list External permit tcp any host "outside_interface_ip" eq 25


or


access-list External permit tcp any host interface outside eq 25



acomiskey Thu, 11/29/2007 - 10:53
User Badges:
  • Green, 3000 points or more

Yes.


static (inside,outside) tcp interface 25 "spam.firewall.ip" 25 netmask 255.255.255.255


Actions

This Discussion