I have a PIX 515E running v6.1(2). The firewall has an external and internal interface only. The webservers and mail server are behind the firewall on the internal network. We have 1 external address reserved for all outbound connections from PCs. I have several static configurations set for inbound connections to the web and mail servers.
The mail server is using an external address of XXX.XXX.XXX.105 which the PIX passes through to my internal address of XXX.XXX.XXX.24. The outbound connections from XXX.XXX.XXX.24 end up using the external address of XXX.XXX.XXX.109. I need it to use the 105 address so other mailservers will accept our emails. I understand from my reading is that all I need is the static config and an access-list entry for outbound-in connections to make it all possible.
What am I doing wrong? Any information would be appreciated. Following is the relevant config:
nameif ethernet0 outside security0
nameif ethernet1 inside security100
name XXX.XXX.XX6.109 extnat
name XXX.XXX.XX6.105 extmail
name XXX.XXX.XX8.24 intmail
access-list 111 permit tcp any host extmail eq smtp
access-list 211 permit ip XXX.XXX.XX8.0 255.255.255.0 XXX.XXX.X10.0 255.255.255.0
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...