Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 674
  • Last Modified:

Ollow 443 and 25 traffice to new mail server behind Cisco ASDM 6.1 for ASA

I am putting a new mail server in for a company and they are using a Cisco device which has ASDM 6.1 for ASA.  The firewall was setup by someone else who is out of contact and I have never used this device before.  I need to have ports 25 and 443 open and allowed through to the server for mail and OWA.  The server is on the internal network (not the dmz) and I have an external static ip address.  Can someone give me the steps I need to take to get this done?  I don't want to change any of there existing rules or I would set it back to default and run the wizard.  Any help would be greatly appreciated.

Thanks!
0
jdltek
Asked:
jdltek
1 Solution
 
ricks_vCommented:
To start with,
if you have asdm running on your pc, simply login using asdm / console/ telnet.
ASDM is used for GUI acces to the device. Personally, I prefer the CLI, but would say the ASDM is also pretty good.

it's always good to have mail server to be in dmz for security reason.
but if you want to get it running on the inside that's fine.
what you need is a PAT or port forwarding from outside to inside.

here's a useful link from one of EE member
http://www.petenetlive.com/Tech/Firewalls/Cisco/portforward.htm

You need to start with modifying ACL, then use the command:
static (inside,outside) tcp interface smtp x.x.x.x smtp netmask 255.255.255.255

x.x.x.x if the mail server sitting on the LAN side.





0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now