Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

PIX DMZ to INSIDE access

I have a smtp bastion host on a DMZ in a PIX 515. The DMZ needs to be able to send mail to a host on the inside network. Assume the following scenario:

nameif ethernet0 outside security0

nameif ethernet1 inside security100

nameif ethernet2 dmz security50

ip address outside 175.0.0.1 255.255.255.224

ip address inside 100.0.0.1 255.255.255.0

ip address dmz 192.168.1.1 255.255.255.0

nat (inside) 1 0.0.0.0 0.0.0.0 0 0

nat (dmz) 1 0.0.0.0 0.0.0.0 0 0

global (outside) 1 interface

global (dmz) 1 interface

DMZ server IP= 192.168.1.2

INSIDE server IP=100.0.0.2

Inside hosts can access DMZ server but I need the DMZ server to be able to send e-mail on port 25 back to an inside server.

Thanks in advance!

1 REPLY
New Member

Re: PIX DMZ to INSIDE access

Sorry...I posted in the wrong group.

71
Views
0
Helpful
1
Replies