cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1425
Views
0
Helpful
2
Replies

Port redirection on PIX 501, for exchange server behind firewall.

t-law
Level 1
Level 1

Hello,

I have a exchange 5.5 server behind the PIX 501 and would like to open port 110 and 25 on the PIX and have the pix redirect traffic to the exchange server on private IP 192.168.0.222

How do you achieve this? If anyone have done this before, can I see your configuration?

I was using a linksys dsl/router NAT box in the past and got everything working by forwarding port 110 & 25 to 192.168.0.203. Now, with the pix, what do i need to do to expose the exchange server on these 2 ports.

Thank you,

Travis,

2 Replies 2

gradosavljevic
Level 1
Level 1

I assume that you have a static IP address on the WAN side of the PIX that you can use( e.g. 212.100.1.1), and if so, these are the command you'd have to use :

static (inside,outside) 212.100.1.1 192.168.0.222 netmask 255.255.255.255

conduit permit tcp host 212.100.1.1 eq smtp any

conduit permit tcp host 212.100.1.1 eq pop3 any

best regards

- Goran

You don't need an additional ip address. You can simply use the PIX

interface IP address to do the port redirection (thereby saving an IP address).

Sample:

static (inside,outside) tcp interface www 10.1.1.5 www netmask

access-list 101 permit tcp any host 172.18.124.216 eq www

access-group 101 in interface outside

more at:

http://www.cisco.com/warp/customer/707/28.html#port

Review Cisco Networking for a $25 gift card