Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1217
Views
0
Helpful
1
Replies

ASA firewall version 8.3.1 Message lab SMTP allow only from internal Exchange server

ssengotaiyan
Level 1
Level 1

‎02-17-2011 10:44 PM - edited ‎03-11-2019 12:52 PM

Guys

  Can some one help me to create rules for allowing only smtp traffic from exchange server( inside)  to message lab server ( outside) in asa firewall Version 8.3.1.

Your earliest response would be appreciated.

Thanks

selva

Labels:
0 Helpful
1 Reply 1

Jennifer Halim
Cisco Employee
Cisco Employee

‎02-18-2011 02:32 AM

Firstly, do you have a list of all the message lab ip addresses?

Once you have them, then you can create an object-group:

object-group network messagelabs

     network-object host

and just keep on adding all the message lab ip subnet/ip addresses

Then check if there is any access-list applied to the ASA inside interface, and add to the existing access-list:

access-list permit tcp host object-group messagelabs eq 25

Do you also need inbound mail from messagelabs towards your internal mail server?

I assume you already have the NAT configured?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card