Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi all,I'm a bit confused as to why this config doesn't work.I have an internal Front End Exchange server which I'm trying to forward https clients to.I already have smtp forwarding to my main Exchange server and this works fine.Hers my config, any h...
Hi all,I have a decision to make regarding our PIX515e.We have the DMZ bundled PIX.I have been considering setting up the following configuration.internet>pix>dmz>Front End Exchange>Internal ExchangeHowever every where I look the advice is not to use...
Hi all,I have been struggling with this on my new pix for sometime now.I'm setting up my config via the PDM is this correct or should I be using the command line tool?Also X late commands, do these have to be given or would switching off the firewall...
Hi,I know this should be easy but....Pix Version 6.3 (3)PDM Version 3.0 (1)I have configured PAT on my external interface. I can get Internet access from internal clients through the PAT.However I'm having difficulties in setting the translation from...
Thanks Jay,A voice of reason at last!I can see the benefit of application level filtering that ISA offers but how many firewalls is enough?I guess MS will soon be saying that you only require ISA and no form of PIX etc.Thanks againColin
Hi Jay,Just leting you know that the problem is now resolved.I used the CLI to clear the exisiting ouitside ACL and re-entered as you said. Works fine.However I'm curious. As I said the config listed above was created using PDM. What is so different ...
Hi Jay,Thanks for your comments.From what you have said my config (show above) is indeed correct.I know my mx recs are good because I have an exixsting firewall product which forwards that port fine.I'll try the clear xlate and write mem commands. I'...
Hi thx for your comments,When you say the ip on the inside looks like 192,168.1.3 (this is the mail server). I assume this is correct and doesnt need to be the ip of the inside interface? As after all i'm directing to the server not the interface?
