Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

PTR RECORDS and static translations

Hi. I am certain the issue we are experiencing is one that is very common. We have an internal spam filter [10.1.1.5] that receives all smtp traffic by being translated to 1.1.1.1 [obviously an example IP] on the Internet. Therefore, our public mail.acme.com is 1.1.1.1. Now, our mail server [10.1.1.10] send OUT mail on 1.1.1.2 [public]. The PROBLEM is that today, many firms are using reverse lookups when they receive an email. Thus, an email received from us has a source address 1.1.1.2 yet our 'SPF' record returns 1.1.1.1 for the lookup. The mail is droppeed. We need to have all smtp outbound mail 'look like' its source address is 1.1.1.2 EVEN THOUGH incoming traffic for 1.1.1.2 goes to the spam filter at 10.1.1.1. I hope that makes sense.... I've tried reversing the parameters in static translations to now avail... Please help.

Thanks!

2 REPLIES
Community Member

Re: PTR RECORDS and static translations

Did you ever get this resolved? If so can you share the fix?

Community Member

Re: PTR RECORDS and static translations

Yes sir.

The solution was to have the firm we were speaking to point to a 2nd IP as a 2nd PTR and then we xlated the spam filter to IT, and we were OK. A band-aid, but it worked! :) I hope this helps you!!

120
Views
0
Helpful
2
Replies
CreatePlease to create content