Our work purchase an ASA 5510 SEC. App. Firewall, which I have to set it up and connect it to my network at work for the purpose of publishing our corporate mail server (I am a new to Cisco routers and specialized in building AD infrastructure). The network infrastructure is as follows:
ISA(172.16.1.2) ------(172.16.1.1)(Inside) ASA (outside)(Add.IP2)-->(ISP Router IP1)-> Internet
(10.0.0.3)Web Server ----- (10.0.0.5)SMTP(Mail Relay)
I want to instruct AS to:
1- Forward all inbounding Mail (mail.company.com) requests to the SMTP server (mail Relay server) which resides in the DMZ zone, and which will forward mail to the smart host and then to the front edge connector behind ISA using port 443, AND
2- Forward the inbound company's site (company.com) requests be forwarded to the web server in DMZ Zone.
Assuming IP/Subnet Address assigned by the ISP
IP1 => Gateway
IP2=> Assigned to ASA's external interface (OR shouldn't I?)
IP3=> assigned to mail.company.com
IP4=> assigned to company.com
I am seeking help and can someone give me a clue on how to start setting up this firewall for the above purpose.
But please notes that my mail server (FE-Exchange ) is behind ISA and my SMTP is on the DMZ network. However, I will for sure review the article you have directed me to, and try to extract the suitable configuration.
But still I will continue posting my questions if there is any, hopingwill get the answer.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...