Solved

Configure PIX firewall to only accept port 25 traffic from a range of IP addresses

Posted on 2006-07-19
3
240 Views
Last Modified: 2013-11-16
Would someone please tell me the command to only accept incoming port 25 traffic from a ip range?
0
Comment
Question by:LAzuberi
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 5

Expert Comment

by:Dbergert
ID: 17143109
you need to create an access list...

access-list 100 permit tcp 172.16.10.0 0.0.0.255 host [smtpserver IP] eq 25
 
where 172.16.10.0 0.0.0.255 is the range from  172.16.10.0  - 172.16.10.254

What is the IP range ?
0
 

Author Comment

by:LAzuberi
ID: 17143117
[smtpserver IP] is my internal mail server right?
0
 
LVL 5

Accepted Solution

by:
Dbergert earned 500 total points
ID: 17143134
This will actually be the External IP of the mail server.

you will also need to NAT the Extrenal IP and port 25 to the internal mail server


this is done with a static command:

static (inside,outside) tcp [external IP] 25 [internal ip] 25 netmask 255.255.255.255 0 0

this opens port 25 and directs it to the internet mail server port 25
0

Featured Post

Now Available: Firebox Cloud for AWS and FireboxV

Firebox Cloud brings the protection of WatchGuard’s leading Firebox UTM appliances to public cloud environments. It enables organizations to extend their security perimeter to protect business-critical assets in Amazon Web Services (AWS).

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many old projects have bad code, but the budget doesn't exist to rewrite the codebase. You can update this code to be safer by introducing contemporary input validation, sanitation, and safer database queries.
Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

735 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question