Specific Commands to Allow SMTP through Cisco port
We have an in house application that sends an email notification, by way of SMTP, to an internal recipient. We have discovered that some computers with the application will timeout when sending the email. We have determined that the computers with the issue are connected to particular switches that the other computers are not.
I have seen some examples of how to modify the ACL to allow/deny SMTP that make sense. However, I am not very familiar with the Cisco NOS and do not want to bring down the network or leave an unnecessary security hole. My goal is to allow SMTP traffic on certain ports without otherwise altering the existing configuration. The switches involved are the Cisco 2960 and 3560.
Could some one tell me the specific commands I would use to allow SMTP on a specific port without otherwise changing the existing configuration? Any help would be greatly appreciated and would say us a service call.
Thank you very much in advance,
I have seen some examples of how to modify the ACL to allow/deny SMTP that make sense. However, I am not very familiar with the Cisco NOS and do not want to bring down the network or leave an unnecessary security hole. My goal is to allow SMTP traffic on certain ports without otherwise altering the existing configuration. The switches involved are the Cisco 2960 and 3560.
Could some one tell me the specific commands I would use to allow SMTP on a specific port without otherwise changing the existing configuration? Any help would be greatly appreciated and would say us a service call.
Thank you very much in advance,
ASKER
Does 101 represent the VLAN?
Does 'permit tcp any any eq 25' mean to allow any traffic in and out on port 25?
How do I copy the ACL?
All I really know how to do is change the VLAN on a port. Some one showed me that step by step.
Does 'permit tcp any any eq 25' mean to allow any traffic in and out on port 25?
How do I copy the ACL?
All I really know how to do is change the VLAN on a port. Some one showed me that step by step.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I think I need to learn more about Cisco commands.
Just make sure the entry to allow smtp is before an entry which would deny it.
Example:
access-list 101 deny ip any any
access-list 101 permit tcp any any eq 25
The second line wouldn't be applied since the first denys all ip traffic