after i create zone-pair policy for outzone -> inzone, i facing that the problem that user in private zone cannot receive incoming mail from external mail server.
i use nslookup and check the ip for the external mail server - pop.singxxx.com, 16x.2x.10x.21x
for my zone-pair inzone -> outzone, my policy only inspect protocol like http, https, dsn, and ACL IS permit ip any any.
what should i do on the outzone -> inzone zone base policy, can i use ACL to permit tcp any host 16x.2x.10x.21x eq 110
any idea? thanks