Friends, I have 2 ASA FW 5520 and 5505, and they are connected with each-other VIA VPN. I have mail server MS exchange, Domain, Share point and etc... inside 5520. And my question is next: Is it possible that users from 5505 could send and receive mails and have access with domain controlers ... ?
Is short - yes! as long as both sites know about the IP subnets. To make it work - the device on the 5505 site should have it's DHCP device configured with the DNS server IP address of 5520....or if the 5505 site has it's own DNS, it should forward to the 5520's.
I staticly configured ASA 5505 DNS (and domain server) as what DNS IP and DOMAIN name mas assign to the mainc cisco asa 5520. i know that, but shold i need to open SMTP port dor asa 5505's users to send and recieve mails form ASA 5520 (sysopt connection permit vpn is enough to permit mail (SMTP traffic???)). I already configured ASA 5505 inside users to have access to internet VIA 5520 firewall ... :)))
I just want to use mail server via VPN. I already configured VPN and users from 5505 can reach to internet through VPN. I mean i can open web site from 5505 using VPN. and if i can reach internet via VPN i think i can use mail server which is situated in the inside interface of ASA 5520 ...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...