<div>
Allow port 25 traffic inbound to the Exchange server. &nbsp;If the public IP address is the same for your PIX and mail server you will not need to do anything else. &nbsp;If the PIX and mail server have different public IPs you will need to setup a one-to-one NAT of the public IP address to the private IP address of the Exchange server. &nbsp;<br />
<br />
Here are a few more ports commonly used for SBS.<br />
Outlook Web Access: port 443 (force SSL connection to OWA in IIS, don't allow port 80 traffic for security reasons)<br />
Terminal Services: port 3389<br />
Remote Web Workplace: port 4125
</div>


Allow port 25 traffic inbound to the Exchange server.  If the public IP address is the same for your PIX and mail server you will not need to do anything else.  If the PIX and mail server have different public IPs you will need to setup a one-to-one NAT of the public IP address to the private IP address of the Exchange server.  

Here are a few more ports commonly used for SBS.
Outlook Web Access: port 443 (force SSL connection to OWA in IIS, don't allow port 80 traffic for security reasons)
Terminal Services: port 3389
Remote Web Workplace: port 4125

<div>
I'm a novice when it comes to routers &amp;&nbsp;firewalls, so thanks for the links to your clear and easy to deploy recommendation.<br />

</div>


I'm a novice when it comes to routers & firewalls, so thanks for the links to your clear and easy to deploy recommendation.


<div>
<div class="content wysiwyg-content">
I'm running a Microsoft SBS2003 Server w/Exchange/SQL along with a Cisco PIX501 Firewall (Current PDM &amp;&nbsp;IOS) . To date, all users access e-mail via POP3/Outlook on the desktop. I'm in the process of removing the existing POP3 e-mail clients and converting all users to SMTP/Exchange on the SBS. I want to know how I should configure the PIX501 to allow Exchange/SMTP e-mail hosting on Small Business Server 2003.<br />
Thanks,<br />
Bill 
</div>
</div>


I'm running a Microsoft SBS2003 Server w/Exchange/SQL along with a Cisco PIX501 Firewall (Current PDM & IOS) . To date, all users access e-mail via POP3/Outlook on the desktop. I'm in the process of removing the existing POP3 e-mail clients and converting all users to SMTP/Exchange on the SBS. I want to know how I should configure the PIX501 to allow Exchange/SMTP e-mail hosting on Small Business Server 2003.
Thanks,
Bill 

Cisco PIX501 Port Configuration to allow Exchange/SMTP hosting on Small Business Server 2003

Interactions between email servers and clients are governed by email protocols. The three most common email protocols are POP, IMAP and MAPI. Most email software operates under one of these (and many products support more than one).  The correct protocol must be selected, and correctly configured, if you want your email account to work.

Email Protocols

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).

Cisco

Small Business Server (SBS) is a line of server operating systems targeted at small businesses by bundling the operating system with a number of other Microsoft products that would normally need to be purchased or licensed separately. The most notable inclusions are Exchange, SQL Server, SharePoint and ISA/TMG (Microsoft's firewall and proxy server).