Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

ASA 5510 rDNS issue with email, help!

I am a little stuck on this rDNS issue with the ip/fqdn not matching our PTR entry on the IPS DNS

We have web VPN acces setup on the ASA ethernet public IP address.. ie.  12.244.214.3

for the PTR DNS we have our mail server fqdn set to  ie. 12.244.214.5 

but all our mail is being sent out thru the ASA using the .3 address, therfore causing issue with the mismatch of the rDNS checks.

we have tried changing the fqdn/ptr to .3 address but that didnt work cause thats the hosting the VPN connection.

how can i redirect all the out going emails to using the .5 address on the block that we own?

thanks

Everyone's tags (4)
1 REPLY
Community Member

ASA 5510 rDNS issue with email, help!

you can either create a 1:1 NAT for your internal mail server or you can create PAT all outbound SMTP whether its coming from your internal mail server or other computers.

1:1 NAT solution -   static (inside,outside) 12.244.214.5 192.168.100.5 netmask 255.255.255.255

PAT solution -

access-list SMTP permit tcp any any eq smtp

nat (inside) 25 access-list SMTP

global (outside) 25 12.244.214.5

639
Views
0
Helpful
1
Replies
CreatePlease to create content