08-21-2007 04:40 AM - edited 03-11-2019 04:00 AM
We have a pix 501. I have a primary Ip on the outside interface of 68.x.x.21
I have a secondary IPaddress of 68.x.x.17 that handles incoming mail request. Tne problem is when I send mail through this pix the ip address shows up as 68.x.x.21 and not 68.x.x.17. I need the mail server to use the 17 address to send mail. I know the easy answer is to change the primary ip to the .17 but then I have to deal with external ftp servers we attach to that are setup to allow our ip address of .21
So wehat I need to do is force the mail server in my lan to send useing .17 instead of .21
Thanks
08-21-2007 05:02 AM
Hi
if you use the following statement
static (inside,outside) 68.x.x.17 "internal mail server ip" netmask 255.255.255.255
you don't need to worry about secondary addresses.
Jon
08-21-2007 05:33 AM
Hi Jon
The static is already in there. In bound work fine but on outbound My mail still looks like it comes from the 21 address and not the 17. Is there a acl I need to put in.
Thanks
Stephen
08-21-2007 05:39 AM
Stephen
Shouldn't have to.
Can you post the NAT config from your firewall (santised)
Jon
08-21-2007 05:46 AM
08-21-2007 05:40 AM
Hi Jon
The static is already in there. In bound work fine but on outbound My mail still looks like it comes from the 21 address and not the 17. Is there a acl I need to put in.
Thanks
Stephen
08-21-2007 06:47 AM
Since you configured the NAT statement, have you do a clear xlate or reboot the pix?
08-21-2007 07:14 AM
static has Always been there. Reboots a plenty since setup of static. Still no joy
08-21-2007 12:07 PM
Stephen
Can you post full config + an output of
"sh xlate"
Jon
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide