Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2156
Views
0
Helpful
2
Replies

how to enable smtp inside by name (telnet mail.xxxx.com 25) on ASA 5515-x?

rechard_hk
Level 1
Level 1

‎04-01-2014 06:50 PM - edited ‎03-11-2019 09:01 PM

Dear all ,

 

how can we allow from inside telnet by name like ( telnet mail.xxx.com 25 ) , but if i'm at outside i can telnet mail.xxx.com 25 is working.

 

 

Best Regards,

Rechard

Labels:
0 Helpful
2 Replies 2

rechard_hk
Level 1
Level 1

‎04-01-2014 08:02 PM

Dear all ,

 

do you have any advice?

 

Best Regards,

Rechard

0 Helpful

Marius Gunnerud
VIP
VIP
In response to rechard_hk

‎04-02-2014 02:54 AM

The reason you are not able to use mail.xxx.com from the inside is because it is most likely resolving to a public IP address.  To resolve this you can either adjust the FQDN to IP resolution in the DNS server so that it points to the private IP, or you can configure a NAT statement in the firewall that will translate requests for the public IP to the priave IP on port 25.

If the DNS server is located either on the Internet or on a different ASA interface you could use DNS rewrite so that all DNS requests for that server will be automatically translated to the private IP of the server.

 

--

Please remember to rate and select a correct answer

--
Please remember to select a correct answer and rate helpful posts
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card