?
Solved

Configure PIX firewall to only accept port 25 traffic from a range of IP addresses

Posted on 2006-07-19
3
Medium Priority
?
245 Views
Last Modified: 2013-11-16
Would someone please tell me the command to only accept incoming port 25 traffic from a ip range?
0
Comment
Question by:LAzuberi
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 5

Expert Comment

by:Dbergert
ID: 17143109
you need to create an access list...

access-list 100 permit tcp 172.16.10.0 0.0.0.255 host [smtpserver IP] eq 25
 
where 172.16.10.0 0.0.0.255 is the range from  172.16.10.0  - 172.16.10.254

What is the IP range ?
0
 

Author Comment

by:LAzuberi
ID: 17143117
[smtpserver IP] is my internal mail server right?
0
 
LVL 5

Accepted Solution

by:
Dbergert earned 2000 total points
ID: 17143134
This will actually be the External IP of the mail server.

you will also need to NAT the Extrenal IP and port 25 to the internal mail server


this is done with a static command:

static (inside,outside) tcp [external IP] 25 [internal ip] 25 netmask 255.255.255.255 0 0

this opens port 25 and directs it to the internet mail server port 25
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How does someone stay on the right and legal side of the hacking world?
What monsters are hiding in your child's room? In this article I will share with you a tech horror story that could happen to anyone, along with some tips on how you can prevent it from happening to you.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…

649 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question