Map SMTP port on multiple Public IPs to single private IP.

Unanswered Question
Jan 9th, 2008

Hello,

we have a need to map smtp on multiple external public IPs to a single Internal IP. We need https,www, and pop3 for the external IP to go to one internal, and smtp to go to a different internal.

What we'd like to do:

static (inside,outside) tcp <ip1>.39 80 10.1.1.63 http

static (inside,outside) tcp <ip1>.39 pop3 10.1.1.63 pop3

static (inside,outside) tcp <ip1>.39 https 10.1.1.63 https

static (inside,outside) tcp <ip1>.39 smtp 10.1.1.41 smtp

static (inside,outside) tcp <ip2>.40 80 10.1.1.64 http

static (inside,outside) tcp <ip2>.40 pop3 10.1.1.64 pop3

static (inside,outside) tcp <ip2>.40 https 10.1.1.64 https

static (inside,outside) tcp <ip2>.40 smtp 10.1.1.41 smtp

But the PIX cries about overlapping NAT statements.

We need this because we're an IT outsourcing company and we typically manage our customer's DNS zones. Of course, in every bunch there's an exception and one customer has their DNS hosted elsewhere. We changed the necessary DNS on our side for our customers when we made a mail change (which is close to 100 customers), but when we did this it broke this one-of customer. The DNS hoster for the customer is a little one-man shop and the guy is out of the office for two weeks. What a mess. For some reason their DNS is not using our MX record, so it broke when we made our upgrade.

Is there any way we can accomplish anythign similar to what we're trying to do? This is a PIX 515E with 7.0(6) Thanks.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
rtjensen4 Wed, 01/09/2008 - 12:30

Ok, we found a work-around that wil be fine for now. We added a 2nd IP to the 10.1.1.41 server and just the .39 server to that. So we're only using 1 server for the time being, but that's ok.

Actions

This Discussion