• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 219
  • Last Modified:

How do I create an access list which denies smtp to all nodes except the email server?

How do I create an access list which denies smtp to all nodes except the email server?
0
aramirez-1
Asked:
aramirez-1
1 Solution
 
nasirshCommented:
access-list 10 permit tcp host E-Mail Server any eq 25
access-list 10 deny tcp any any
0
 
lrmooreCommented:
That'll deny a lot more than email, and you can't use a standard acl number, it has to be extended number range.

Assuming that you are applying this to an inbound interface:

access-list 110 permit tcp any host <mail server ip> eq 25
access-list 110 deny tcp any any eq 25
access-list 110 permit ip any any
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now