Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2237
Views
0
Helpful
2
Replies

Reverse DNS Issue with Barracuda Spam Filter

shaw.chris
Level 1
Level 1

‎10-23-2008 03:22 AM - edited ‎03-11-2019 07:01 AM

Hi, I have a Barracuda Spam Filter which accepts our incoming smtp and passes it on to our Exchange Server.

For Outgoing emails the Exchange server sends directly out.

I have static Nats set up as follows (external IP's replaced)

Exchange Server

static (INSIDE,OUTSIDE) 1.2.3.4 10.0.0.5 netmask 255.255.255.255

Barracuda

static (INSIDE,OUTSIDE) 1.2.3.5 10.0.0.6 netmask 255.255.255.255

also access-lists as follows

Exchange (https & www for Outlook Web Access)

access-list OUTSIDEIN extended permit tcp any host 1.2.3.4 eq https

access-list OUTSIDEIN extended permit tcp any host 1.2.3.4 eq www

Barracuda (incoming SMTP)

access-list OUTSIDEIN extended permit tcp any host 1.2.3.5 eq smtp

Problem is when I send emails out, it goes out as 1.2.3.4 which does not match up with the MX record that points to 1.2.3.5

Therefore we are receiving Reverse DNS failures from recipients

<exchange1.ourdomain.local #5.7.1 smtp;550 5.7.1 Client host rejected: cannot find your hostname, [1.2.3.4]>

Is it possible for our Exchange Server to send out via 1.2.3.5 ? (I cannot use the Barracuda as an outgoing relay)

Thanks,

Chris

Labels:
0 Helpful
2 Replies 2

andrew.prince
Level 10
Level 10

‎10-23-2008 04:31 AM

Chris,

Create a reverse static route for the Barracuda. currently sounds like you are using a global NAT for all Inside IP address, try the below:-

static (outside,inside) 10.0.0.6 1.2.3.5 netmask 255.255.255.255

HTH>

0 Helpful

shaw.chris
Level 1
Level 1
In response to andrew.prince

‎10-23-2008 04:41 AM

Thanks Andrew,

Would I need this static NAT for the Exchange Server (10.0.0.5) rather than the Barracuda as I want the Exchange server to go out as 1.2.3.5?

I do have Global Nat set up using the Interface address for all inside hosts, but neither the Barracuda or Exchange Server use that address, they currently go out using the addresses I have set up in the Static NATs

Thanks,

Chris

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card