Solved

Configure PIX firewall to only accept port 25 traffic from a range of IP addresses

Posted on 2006-07-19
3
242 Views
Last Modified: 2013-11-16
Would someone please tell me the command to only accept incoming port 25 traffic from a ip range?
0
Comment
Question by:LAzuberi
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 5

Expert Comment

by:Dbergert
ID: 17143109
you need to create an access list...

access-list 100 permit tcp 172.16.10.0 0.0.0.255 host [smtpserver IP] eq 25
 
where 172.16.10.0 0.0.0.255 is the range from  172.16.10.0  - 172.16.10.254

What is the IP range ?
0
 

Author Comment

by:LAzuberi
ID: 17143117
[smtpserver IP] is my internal mail server right?
0
 
LVL 5

Accepted Solution

by:
Dbergert earned 500 total points
ID: 17143134
This will actually be the External IP of the mail server.

you will also need to NAT the Extrenal IP and port 25 to the internal mail server


this is done with a static command:

static (inside,outside) tcp [external IP] 25 [internal ip] 25 netmask 255.255.255.255 0 0

this opens port 25 and directs it to the internet mail server port 25
0

Featured Post

The Ultimate Checklist to Optimize Your Website

Websites are getting bigger and complicated by the day. Video, images, custom fonts are all great for showcasing your product/service. But the price to pay in terms of reduced page load times and ultimately, decreased sales, can lead to some difficult decisions about what to cut.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There is a lot to be said for protecting yourself and your accounts with 2 factor authentication.  I found to my own chagrin, that there is a big downside as well.
Article by: Justin
In light of the WannaCry ransomware attack that affected millions of Windows machines, you might wonder if your Mac needs protecting. Yes, it does and here is how to do it.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question