configuring ASA for PortForward SMTP to DMZ

Unanswered Question
Nov 1st, 2008

Hi,

I'm new to ASA.

Need some help to config the ASA Firewall. I'll be installing an antispam in the DMZ and a new Mail Server in the Tusted. As such, need to forward port 25 from the External IP to the DMZ's AntiSpam IP plus to allow port 25 from DMZ to Internal.

Please advise on how I can do this.

Thanks & regards,

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
abinjola Sat, 11/01/2008 - 04:32

for inbound traffic from outside to dmz

static (dmz,outside) tcp 25 25

access-l outside_acl permit tcp any host 25

access-g outside_acl in interface outside

For communication between dmz and inside

static (inside,dmz)

private ip-->ip address of internal exchange server

access_list dmz_acl permit tcp any host eq 25

tmssupport Sat, 11/01/2008 - 15:51

Thanks for the reply. Will try this.

By the way, we have a Active-Passive ASA cluster. By changing the above on the Active unit, will the change be automatically added to the Passive unit ?

regards,

abinjola Sat, 11/01/2008 - 20:44

yes..do a write standby and it will be copied and saved on the other standby unit

Do rate if it helps !

Actions

This Discussion