Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1941
Views
0
Helpful
3
Replies

ASA 5520 Reverse DNS lookup Issue

david.santel
Level 1
Level 1

‎04-01-2008 03:26 PM - edited ‎02-21-2020 01:57 AM

We are having Reverse DNS issues.

10.10.0.10 = Exchange Server

Windows 2003 = DNS server internal.

Setup: 1 to 1 NAT

10.10.0.10 smtp --> 70.89.133.218 smtp

Int gi0/2 = 70.89.133.217

Incoming Access Rule:

any --> 70.89.133.218 smtp permit

When we do a WhatismyIp on exchange server it says the IP is 70.89.133.217

It should be 70.89.133.217.

This is causing our email to be rejected from external sites due to reverse dns not returning 218. External people say are email is coming from 217. Comcast says the reverse pointer is setup correctly.

What are we doing wrong?

Thanks for any help you can offer.

0 Helpful
3 Replies 3

david.santel
Level 1
Level 1

‎04-01-2008 03:28 PM

Correction:

When we do a WhatismyIp on exchange server it says the IP is 70.89.133.217

It should be 70.89.133.218

217 is the interface gi0/2 on the ASA.

0 Helpful

rahmant
Level 1
Level 1
In response to david.santel

‎04-01-2008 04:45 PM

Can you show the specific "static" entry in your config for the NAT you're attempting?

0 Helpful

mahirvrazalic
Level 1
Level 1
In response to david.santel

‎09-27-2011 09:10 AM

did you ever figure out this thing with the reverse DNS showing PAT ip and not that of external MX record? What was the solution? Having same issue.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card