Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

PIX Not Allowing SMTP from Outside Interface

Hello, all. Here's the scenario: PIX 501 provides firewall/VPN services to office with the web/mail server on the inside. Mail and web work fine on the local LAN, and web and POP/IMAP work fine on the outside, but SMTP does not. It appears that all outbound mail traffic coming through the outside interface is blocked, so outside of the office folks can receive mail just fine, but can't send.

My current config is attached.

Many thanks, in advance, for any suggestions you may have.

6 REPLIES
New Member

Re: PIX Not Allowing SMTP from Outside Interface

On the outside interface of your firewall apply a access-list to permit traffic the public ip of the mail server on the SMTP port. This should resolve your problem.

New Member

Re: PIX Not Allowing SMTP from Outside Interface

I believe I've already got that. From my posted config:

access-list outside-in permit tcp any host eq smtp

New Member

Re: PIX Not Allowing SMTP from Outside Interface

What do you mean by ? Is it the public IP of your mail server?

New Member

Re: PIX Not Allowing SMTP from Outside Interface

Yes, it is the public IP address of the mail server, which is also the IP address of the outside interface of the PIX.

New Member

Re: PIX Not Allowing SMTP from Outside Interface

Do you see any hit counts on the access-list for SMTP?

New Member

Re: PIX Not Allowing SMTP from Outside Interface

Not sure how I'd check that. Suggestions?

136
Views
0
Helpful
6
Replies
CreatePlease to create content