Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
582
Views
0
Helpful
3
Replies

configuring ASA for PortForward SMTP to DMZ

tmssupport
Level 1
Level 1

‎11-01-2008 02:05 AM - edited ‎03-11-2019 07:06 AM

Hi,

I'm new to ASA.

Need some help to config the ASA Firewall. I'll be installing an antispam in the DMZ and a new Mail Server in the Tusted. As such, need to forward port 25 from the External IP to the DMZ's AntiSpam IP plus to allow port 25 from DMZ to Internal.

Please advise on how I can do this.

Thanks & regards,

Labels:
0 Helpful
3 Replies 3

abinjola
Cisco Employee
Cisco Employee

‎11-01-2008 04:32 AM

for inbound traffic from outside to dmz

static (dmz,outside) tcp 25 25

access-l outside_acl permit tcp any host 25

access-g outside_acl in interface outside

For communication between dmz and inside

static (inside,dmz)

private ip-->ip address of internal exchange server

access_list dmz_acl permit tcp any host eq 25

0 Helpful

tmssupport
Level 1
Level 1
In response to abinjola

‎11-01-2008 03:51 PM

Thanks for the reply. Will try this.

By the way, we have a Active-Passive ASA cluster. By changing the above on the Active unit, will the change be automatically added to the Passive unit ?

regards,

0 Helpful

abinjola
Cisco Employee
Cisco Employee
In response to tmssupport

‎11-01-2008 08:44 PM

yes..do a write standby and it will be copied and saved on the other standby unit

Do rate if it helps !

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card