[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 387
  • Last Modified:

Configuring smtp for pix 506e vpn

Hi,

I have an exchange server that I am trying to access through a pix vpn.

Do I need to setup access lists for both firewalls?  And if so what is the most secure way?

example

exchange server 192.168.1.x/10.1.x.x
pix 506e<---vpn-->
exchange client 192.168.2.x/10.2.x.x

Any help would be greatly appreciated.
0
tashmore
Asked:
tashmore
  • 2
  • 2
1 Solution
 
rsivanandanCommented:
Both firewalls ? I see only a single firewall here.

It would be a good start to set the ip address (internal ip) of the exchange server in the 'hosts' file of vpn client so that the resolution happens fast.

2 main things that you might encounter with exchange and outlook over vpn is 'name resolution' and 'mtu problems'. So do the first thing and see if it gives a better result.

If this is not what you meant, then please explain and also post the config.

Cheers,
Rajesh
0
 
tashmoreAuthor Commented:
thanks

I had already added the ip address of the exchange server.  I am also able to ping the server.  

I am separated by two pix 506e firewalls.  The vpn is established.

example:

my pc-->pix 506e-->dsl-->internet<--dsl<--pix 506e<--exchange server
0
 
rsivanandanCommented:
Oh Okay, that would be enough on the security aspect as long as you access the exchange server through the VPN.

The VPN should be configured already with security with access-lists and so no problems. If you think there is something of concern, post the config and lets see.

Cheers,
Rajesh
0
 
tashmoreAuthor Commented:
You were correct about the 'hosts' file.  I had logged in on an xp machine with a different account.

thanks
0

Featured Post

Become an IT Security Management Expert

In today’s fast-paced, digitally transformed world of business, the need to protect network data and ensure cloud privacy has never been greater. With a B.S. in Network Operations and Security, you can get the credentials it takes to become an IT security management expert.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now