I'm in the process of getting a PIX 525 (OS 8.04) setup. It has 6 ethernet interfaces. I have a DMZ (DMZ-IBM) that hosts our Lotus Domino Servers. I am using PAT for this scenario. Inbound mail is working fine, but I am unable to send any outgoing mail. For that matter, I am also unable to access the internet from any server in that DMZ which while not needed all the time, is useful for updating the OS on those servers.
DMZ-IBM are all using 192.168.10.0/28. I have 2 public IPs that those servers share using PAT. I tried running a packet-tracer and it says that traffic is dropped by an Access-List, an implicit rule. I'm not sure what kind of an ACL to create to enable web and mail traffic to go out the outside interface from a host in DMZ-IBM. Any suggestions are welcome. Thank you very much!