We are using a PIX501 with a default configuration, with a few VPN accounts setup as well.
When users connect through VPN, using the Cisco VPN client with the AES-256 transform set (if that makes a difference), IMAP works (port 143), secure IMAP works (port 993), SSH works (port 22) but SMTP (port 25) and POP3 (110) do not work.
All of the above services are running on the same machine, which happily accepts connections from anywhere regardless of IP address.
Also note that when we are connected through the VPN, we get an IP address in the same subnet as the machine we are trying to connect to. This has been confirmed by connecting successfully to port 80, and then looking at the apache logs.
We have tried disabling the default smtp fixup line in the config, but the problems still remain.
Re: SMTP/POP not working through PIX VPN connection.
just wondering if all these protocols, including imap, secure imap, ssh, smtp, and pop3 are only avaliable via vpn. or few of them are available from the internet directly with static nat/pat configured on the pix.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...