PIX - SMTP Inbound and Outbound From Different Internal IPs
We want to port-forward SMTP traffic from a public IP to an anti-spam appliance on our private network and also allow our internal Exchange server, on the same private network, to send outbound from the same public IP address.
We use a single public IP for SMTP. The Pix 515e is configured to port-forward SMTP traffic to an anti-spam appliance on our private network.
We have a second public IP, using PAT, to route the rest of the network to the Internet at 205.x.x.216. We added a static route to map SMTP outbound from the Exchage server to the 205.x.x.211 outside address.
the problem is that the SMTP traffic from the Exchange server is appearing on the 205.x.x.216 address instead of the 205.x.x.211 address. Can someone point me in the right direction to resolve this issue?
Re: PIX - SMTP Inbound and Outbound From Different Internal IPs
Thanks for the config info. We decided that what we were attempting was too complicated and simplified the arrangement. The Exchange server now uses the spam appliance (10.x.x.250) as a smart host. We used your suggestion and mapped a static NAT between the outside interface (x.x.x.211) and the appliance (10.x.x.250).
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...