[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 247
  • Last Modified:

Configure PIX firewall to only accept port 25 traffic from a range of IP addresses

Would someone please tell me the command to only accept incoming port 25 traffic from a ip range?
0
LAzuberi
Asked:
LAzuberi
  • 2
1 Solution
 
DbergertCommented:
you need to create an access list...

access-list 100 permit tcp 172.16.10.0 0.0.0.255 host [smtpserver IP] eq 25
 
where 172.16.10.0 0.0.0.255 is the range from  172.16.10.0  - 172.16.10.254

What is the IP range ?
0
 
LAzuberiAuthor Commented:
[smtpserver IP] is my internal mail server right?
0
 
DbergertCommented:
This will actually be the External IP of the mail server.

you will also need to NAT the Extrenal IP and port 25 to the internal mail server


this is done with a static command:

static (inside,outside) tcp [external IP] 25 [internal ip] 25 netmask 255.255.255.255 0 0

this opens port 25 and directs it to the internet mail server port 25
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now