?
Solved

Firewall Email Problem

Posted on 2007-03-26
3
Medium Priority
?
271 Views
Last Modified: 2010-05-19
Hi Experts:

I am facing a problem at work, and if you can think of something to help me, I would appreciate it.

I just installed a Firewall Cisco ASA using 2 internet or "Outside" connections:  Bell and Toronto Hydro.  Bell is the main Outside, and TorHydro is being used as backup.

Since we have been with Bell for long time, and we have abused our Email service, we have been blacklisted.

Our boss is telling us to move the Outgoing Email to TorHydro... I don't know how to achieve that... I tried moving just the Email with the Proper NAT and ACLs, but the default route is pointing to Bell, not to Hydro.

I added a second default route with Metric 2, and still doesn't work. What should I do ?
0
Comment
Question by:rgomez101
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 29

Expert Comment

by:Alan Huseyin Kayahan
ID: 18795904
        Can you please post your running configuration?
         Second default route is not a solution.

First try removing the first default route and add the default route for hydro. Then check if connection is ok. Then we go on with your running config.
       Do not forget to type cl xl after every route/nat actions.
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 2000 total points
ID: 18802908
>What should I do
Contact Bell and convince them to un-blacklist you.

The ASA is a firewall, and does not have the advanced routing capabilities to do Policy Based Routing as other routers do.

Dual ISP capability with ASA is failover only. All traffic to one, or all traffic to the other, or specified static routes, but only one default gateway at a time.
0
 

Author Comment

by:rgomez101
ID: 18807417
lrmoore is right. I spoke with friends in the University and they all agree... If I switch from one to another, I may have the same problem later.

What I need to do, since I have several MX records is gradually switch from one MX to another, and start my cleaning process with my blockers.

0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question