Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
808
Views
0
Helpful
1
Replies

MX record Reverse DNS lookup and NAT outgoing different IPs -- bounces mail

cdean
Level 1
Level 1

‎05-02-2002 12:09 PM - edited ‎03-08-2019 10:30 PM

I have a PIX 520 that NATs all outgoing activity to a single public IP address. Our MX record is not the same public IP; mail services that do reverse DNS lookup to protect from spoofs and spam dump our email...how do I configure the PIX so mail goes out with the appropriate IP address?

Labels:
0 Helpful
1 Reply 1

mmellet
Level 3
Level 3

‎05-10-2002 06:18 AM

I guess I don’t understand what you are saying. If your SP is hosting your SMTP, your inside hosts hand off the mail to that host (which in turn should be the same as your MX record.) When that server tries to send the mail to the correct address, IDENT should be allowed to that server to be sure the other mailservers can verify identity. If you host your own SMTP server behind your firewall, the MX record should point at the static translation setup in the PIX. Now simply open an additional conduit for IDENT and mail should work fine.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents