Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Ollow 443 and 25 traffice to new mail server behind Cisco ASDM 6.1 for ASA

Posted on 2009-04-14
1
Medium Priority
?
670 Views
Last Modified: 2012-05-06
I am putting a new mail server in for a company and they are using a Cisco device which has ASDM 6.1 for ASA.  The firewall was setup by someone else who is out of contact and I have never used this device before.  I need to have ports 25 and 443 open and allowed through to the server for mail and OWA.  The server is on the internal network (not the dmz) and I have an external static ip address.  Can someone give me the steps I need to take to get this done?  I don't want to change any of there existing rules or I would set it back to default and run the wizard.  Any help would be greatly appreciated.

Thanks!
0
Comment
Question by:jdltek
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 6

Accepted Solution

by:
ricks_v earned 1500 total points
ID: 24144214
To start with,
if you have asdm running on your pc, simply login using asdm / console/ telnet.
ASDM is used for GUI acces to the device. Personally, I prefer the CLI, but would say the ASDM is also pretty good.

it's always good to have mail server to be in dmz for security reason.
but if you want to get it running on the inside that's fine.
what you need is a PAT or port forwarding from outside to inside.

here's a useful link from one of EE member
http://www.petenetlive.com/Tech/Firewalls/Cisco/portforward.htm

You need to start with modifying ACL, then use the command:
static (inside,outside) tcp interface smtp x.x.x.x smtp netmask 255.255.255.255

x.x.x.x if the mail server sitting on the LAN side.





0

Featured Post

Simplify Your Workload with One Tool

How do you combat today’s intelligent hacker while managing multiple domains and platforms? By simplifying your workload with one tool. With Lunarpages hosting through Plesk Onyx, you can:

Automate SSL generation and installation with two clicks
Experience total server control

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There’s a movement in Information Technology (IT), and while it’s hard to define, it is gaining momentum. Some call it “stream-lined IT;” others call it “thin-model IT.”
In this article, WatchGuard's Director of Security Strategy and Research Teri Radichel, takes a look at insider threats, the risk they can pose to your organization, and the best ways to defend against them.
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
Suggested Courses

609 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question