microsoft exchange with NLB and PAT on asa 5510

zeuscyril · ‎11-07-2012

hi all,

i have exchange with NLB cluster.

i want to PAT the cluster ip to access email from outside.

i know i can add the static arp entry for multicast cluster ip.

my question is i can add static nat command to that same cluster ip for port 25 and 443 like normal way like we do for normal PAT?

thnaks

cyril

saurabhgoel169 · ‎11-08-2012

yes we can do that..

We have option of port redirection in cisco ASA.. try to do the binding with static pat...

do let me know if you have problem..

if you need config..let me know the IP address so that i can give u the exact commannds

ABDUL RAHIMAN K.M · ‎12-08-2012

Hi all,

Please send me the exact commands , here below the IP details, I'm facing issue with NLB , also please advise what commands I have to issue in switch and ASA for ARP and Static CAM entry?

MX-01 = 192.168.1.1

MX-02= 192.168.1.2

NLB IP = 192.168.3.3

Public IP, for ex : 203.23.23.23

=========================

Please fill the below IP's .

object network "name"

host x.x.x.x

nat (inside,outside) static 203.23.23.23

access-list email_ext_access extended permit icmp any any echo-reply

access-list email_ext_access extended permit tcp any host x.x.x.x eq https

access-list email_ext_access extended permit tcp any host x.x.x.x eq smtp