02-03-2008 12:05 PM - edited 02-21-2020 01:53 AM
Hello, all. Here's the scenario: PIX 501 provides firewall/VPN services to office with the web/mail server on the inside. Mail and web work fine on the local LAN, and web and POP/IMAP work fine on the outside, but SMTP does not. It appears that all outbound mail traffic coming through the outside interface is blocked, so outside of the office folks can receive mail just fine, but can't send.
My current config is attached.
Many thanks, in advance, for any suggestions you may have.
02-03-2008 12:14 PM
On the outside interface of your firewall apply a access-list to permit traffic the public ip of the mail server on the SMTP port. This should resolve your problem.
02-03-2008 12:29 PM
I believe I've already got that. From my posted config:
access-list outside-in permit tcp any host
02-03-2008 12:32 PM
What do you mean by
02-03-2008 12:41 PM
Yes, it is the public IP address of the mail server, which is also the IP address of the outside interface of the PIX.
02-03-2008 12:44 PM
Do you see any hit counts on the access-list for SMTP?
02-03-2008 04:36 PM
Not sure how I'd check that. Suggestions?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide