Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Port redirection on PIX 501, for exchange server behind firewall.

Hello,

I have a exchange 5.5 server behind the PIX 501 and would like to open port 110 and 25 on the PIX and have the pix redirect traffic to the exchange server on private IP 192.168.0.222

How do you achieve this? If anyone have done this before, can I see your configuration?

I was using a linksys dsl/router NAT box in the past and got everything working by forwarding port 110 & 25 to 192.168.0.203. Now, with the pix, what do i need to do to expose the exchange server on these 2 ports.

Thank you,

Travis,

2 REPLIES
New Member

Re: Port redirection on PIX 501, for exchange server behind fire

I assume that you have a static IP address on the WAN side of the PIX that you can use( e.g. 212.100.1.1), and if so, these are the command you'd have to use :

static (inside,outside) 212.100.1.1 192.168.0.222 netmask 255.255.255.255

conduit permit tcp host 212.100.1.1 eq smtp any

conduit permit tcp host 212.100.1.1 eq pop3 any

best regards

- Goran

Cisco Employee

Re: Port redirection on PIX 501, for exchange server behind fire

You don't need an additional ip address. You can simply use the PIX

interface IP address to do the port redirection (thereby saving an IP address).

Sample:

static (inside,outside) tcp interface www 10.1.1.5 www netmask

access-list 101 permit tcp any host 172.18.124.216 eq www

access-group 101 in interface outside

more at:

http://www.cisco.com/warp/customer/707/28.html#port

236
Views
0
Helpful
2
Replies
CreatePlease login to create content