Hi,

i cannot access the mail server from internet. can anyone help.

following is the setup:

PIX outside interface connected to INTERNET.

PIX inside interface connected to LAN Router.

Router interface connected to switch.

Email server having ip 10.2.1.5 connected to switch.

at pix:

access-list 100 extended permit tcp any host 210.x.x.x eq smtp

access-list 100 extended permit tcp any host 210.x.x.x eq ftp

access-group 100 in interface outside.

static (inside,outside) 210.x.x.x 10.2.1.5 netmask 255.255.255.255

static (inside,outside) 210.X.x.x 10.2.1.6 netmask 255.255.255.255

Problem:

can't access the email server via 210.X.x.x from internet.

syslog message shows that

deny udp source outside-----by access group 100.

can anyone help.

Thanks in advance