cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
367
Views
0
Helpful
3
Replies

Mail smtp using PAT instead of static NAT assigned

Steve Graham
Level 1
Level 1

All, I am seeing some odd things in relation to how our smtp gateway is sending information out across the Internet. When I do a show xlate it shows that it is using the global PAT of our primary ISP. However, I have a static NAT assigned to it over our second ISP. When emails are sent to external email systems from us, it is showing it coming from our smtp gateway as the global PAT assigned on my primary ISP. Is there any specific way I can watch what's going on when the firewall does a NAT with a specific command on the ASA?

1 Accepted Solution

Accepted Solutions

brettmilborrow
Level 1
Level 1

Hi,

I think you may find that routing is what is causing what you are explaining. i.e The destination of the connection you are describing means that the traffic exits via the primary ISP link which (for your mail server) only has a PAT to the firewall interface address.

In order to verify this, you can check the routes manually using the 'sh route' command, or you can trace the path a packet would take through the firewall device using the 'packet-tracer' command, paying specific attention to the last section.

View solution in original post

3 Replies 3

brettmilborrow
Level 1
Level 1

Hi,

I think you may find that routing is what is causing what you are explaining. i.e The destination of the connection you are describing means that the traffic exits via the primary ISP link which (for your mail server) only has a PAT to the firewall interface address.

In order to verify this, you can check the routes manually using the 'sh route' command, or you can trace the path a packet would take through the firewall device using the 'packet-tracer' command, paying specific attention to the last section.

That was exactly what I needed, the packet-tracer command got me what I needed to resolve my issue.

Thanks for the post.

no problem!

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: