Solved

How do I terminate mail SSL (993) and forward to internal mail server with Cisco PIX 501

Posted on 2009-07-10
2
480 Views
Last Modified: 2012-05-07
Hello,

I wish to install a certificate for my mail server on our firewall, and have SSL terminate there. This way the DN of the certificate will match the IP of the firewall, which is aliased to our email server. The CISCO PIX firewall then should forward the connection to the mail server (143).

(Internet)                                             (Firewall)                                      (Internal System)
IMAP Client --------993/imaps -------> [Cisco PIX]---------143/imap---------->mail server

Is this possible?

What is the configuration for the certificate and root Certificate? What are the settings for forwarding the packets after SSL is terminated?


TIA!
0
Comment
Question by:wbathurs
2 Comments
 
LVL 33

Accepted Solution

by:
Dave Howe earned 500 total points
ID: 24829785
As far as I know. PIX can't do TLS Reverse Proxy. All you can do is NAT/PAT the inbound connection to the secure port on the inside server.
0
 

Author Closing Comment

by:wbathurs
ID: 31602380
No good suggestions around the issue
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco RSTP portfast 3 49
Cisco UCM 10.5 VM on UCS C240 M4S2 - v2.0(3i) How to backup 2 74
Setup NAT/PAT question 3 40
By pass website on ASA for Websense 4 49
This article assumes you have at least one Cisco ASA or PIX configured with working internet and a non-dynamic, public, address on the outside interface. If you need instructions on how to enable your device for internet, or basic configuration info…
Since pre-biblical times, humans have sought ways to keep secrets, and share the secrets selectively.  This article explores the ways PHP can be used to hide and encrypt information.
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…
This is a video describing the growing solar energy use in Utah. This is a topic that greatly interests me and so I decided to produce a video about it.

930 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now