two questions w/ PIX

admin_2 — Fri, 21 Feb 2020 07:18:49 GMT

A client has their primary DNS on the inside and a secondary DNS on the outside (not a DMZ port). They want to be able to have the secondary DNS poll the primary every fifteen and intiate a zone transfer if required. What is an easy way to do this? The pix is running 6.3.

Second question. Same client wants me to restrict outbound smtp to a certain address (a mail relay located on the outside). Can this be done? That is, only allow outbound smtp to a specific ip...if the mail is destined for any other ip, drop it. They do not want any inbound smtp. Can this even be done on the PIX?

Thanks

Re: two questions w/ PIX

Fri, 26 Mar 2004 19:12:04 GMT

I think I solved my second question. Can someone verify this ACL:

permit tcp a.b.c.d 0.0.0.0 eq 25 w.x.y.z 0.0.0.0 eq 25

a.b.c.d is the inside network and the other the outside. I think that applied in on the inside interface will do it.

topic two questions w/ PIX in Network Security

two questions w/ PIX

Re: two questions w/ PIX