I'm implementing a Postini (anti-spam) solution for a small company. Currently my pix allows smtp traffic from anywhere on the outside. How do I configure it to only accept smtp traffic from an IP range of 220.127.116.11 to 18.104.22.168/20 (this is Postini's network range)? How do I implement this, thank you in advance.
Ok, I am assuming that you are using access-lists not conduits and you have more than one public IP address from your ISP (not port forwarding on a single public ip).
Lets say your public IP address you're using for your mail server is 22.214.171.124 and the inside (real) IP address for your mail server is 192.168.1.2. In the senerio I just described, you have something like this in your config:
access-list outside_in permit tcp any host 126.96.36.199 eq 25
access-group outside_in in interface outside
In this case we are allowing smtp (tcp 25) from anywhere on the internet to 188.8.131.52 (our mail server's public IP address). You stated that you only want to allow mail traffic from 184.108.40.206/20. All you would have to do in this case add the following access-list:
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...