Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

configure nat on the firewall to block

I am having an issue with some spam...I would like to configure nat to block utbound connections to the internet on port 25 unless it comes from my mail server

1 REPLY

Re: configure nat on the firewall to block

Keith,

I would write an outbound ACL on you inside interface. something like:-

access-list inside_out permit tcp host any eq 25

access-list inside_out deny tcp x.x.x.x y.y.y.y any eq 25

access-list inside_out permit ip any any

access-list inside_out permit icmp any any

x.x.x.x = internal IP subnet

y.y.y.y = internet subnet mask

HTH>

178
Views
0
Helpful
1
Replies
CreatePlease to create content