How do I terminate mail SSL (993) and forward to internal mail server with Cisco PIX 501
Posted on 2009-07-10
I wish to install a certificate for my mail server on our firewall, and have SSL terminate there. This way the DN of the certificate will match the IP of the firewall, which is aliased to our email server. The CISCO PIX firewall then should forward the connection to the mail server (143).
(Internet) (Firewall) (Internal System)
IMAP Client --------993/imaps -------> [Cisco PIX]---------143/imap---------->mail server
Is this possible?
What is the configuration for the certificate and root Certificate? What are the settings for forwarding the packets after SSL is terminated?