Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,I have a Windows PC in our DMZ that I need to athenticate to our Active Directory. I have seen several lists of different ports that I need to allow through, but they all refer to replication etc. which I don't need: I just want to authenticate! I...
Hi, hope you can help...We are getting some emails bounced because the mail is going out on the outside i/f address of our PIX instead of the reverse lookup address of our mail server.This is because the SMTP W2K server is clustered, so while the mai...
Thanks guys.Sorry for the delay in replying, but I've been out of the office and these pages are impossible to read/navigate on my PDA!So, yes John, we are using DNS.Eli: your list is about as long as others I've seen, but I was hoping for a shorter ...
Excellent!The static command needs the port 25 adding to it to allow other addresses to get replies to packets sent on 199.199.199.2.Now inbound smtp goes to 10.0.0.2 and outbound goes on 10.0.0.1 without the receiving smtp server saying "may be forg...
That didn't work.I think the trouble is that the packets out on 10.0.0.1 are on the right external address, but the replies are natted back to 10.0.0.2 via the static nat. Even though both addresses are on the same server, the replies are not "seen"....
The cisco web site just timed out after I'd written the whole reply!!!!!!I've taken out:nat (inside) 2 10.0.0.1and email and internet are working again.The physical server address is 10.0.0.1 (the access-list hit count increments this rule when SMTP ...
