We have been trying to use a PIX with two DMZ's in addition to inside and outside connections.
One is a DMZ containing customer test equipment, the second contains an mailserver and a DNS server.
We wanted to keep them in separate DMZ's because we plan to use the mailserver for other things and wanted to control the customer's access to the mail server.
Our customer wants to be able to send and receive e-mail from the Internet to a machine in the test equipment DMZ.
We were trying to relay the messages from their system in the test equipment DMZ to the mail server in the mail DMZ and to the Internet. We were also trying to receive mail to the mail server and relay them to the customer's machine.
We were able to get the Mail Server to send and receive mail to machines on
the Internet (outside).
However, we have been unable to get the customer's machine to connect to the mail server and vice-versa.
We set the security level on as follows
Inside -> 100
SMTP DMZ -> 60
Customer Test DMZ -> 40
We added specfic rules to allow SMTP between the customers machine and the mail server.
However the PIX continues to deny connection requests.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...