I have a unix mailserver on the outside of my firewall. (It used to be our external dns as well)We want to bring it inside because the clients that we use to connect to it go directly through the firewall. What is the most secure way to do this so we don' t have vulnerabilities with sendmail etc???
Just move it inside, give it an inside IP address and create a static on your PIX mapping the old outside IP address to the new inside IP address. Clear your ARP cache on your outside router so it'll connect to the PIX now rather than still try and connect to the MAC address of the mail server. Create an ACL only allowing SMTP thru to this inside host.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...