port 25 redirect setup

Unanswered Question
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
kevin.jones1 Wed, 11/28/2007 - 14:27

static (inside,outside) tcp interface 25 10.1.1.1 25 netmask 255.255.255.255

access-list External permit tcp any host outside_interface_ip eq 25 log

access-group External in interface outside

Easy right?

Looks easy enough, however I am not too familiar with the command syntax with the pix firewall... I assume I type in each line as you have it above one line at a time? How would I un-do this if it did not work properly? Where do I insert the IP address which I want the incoming SMTP traffic to go to? Is there a way to set this up using the web interface and not the command prompt?

sbaddipudi Wed, 11/28/2007 - 14:59

Peter,

you could do a no in front of those commands to remove them. There is a GUI interface if you like it -- PDM I think...

Satya

acomiskey Thu, 11/29/2007 - 09:12

No, it is the ip that you are using to hit from the outside. If you are using the ip off the outside interface then you can do

access-list External permit tcp any host "outside_interface_ip" eq 25

or

access-list External permit tcp any host interface outside eq 25

acomiskey Thu, 11/29/2007 - 10:53

Yes.

static (inside,outside) tcp interface 25 "spam.firewall.ip" 25 netmask 255.255.255.255

Actions

This Discussion