Link to home
Start Free TrialLog in
Avatar of IT
IT

asked on

Cisco PIX config - cannot reach new mail server

I made what I thought would be a very simple change to our Cisco PIX firewall to allow mail and OWA access to our new Exchange 2007 server. We recently added a new Exchange 2007 server into an existing Exchange 2003 single server environment with the intention of decommissioning the old Exch 2003 box.

Here's more background:

I migrated all mailboxes from an old Exch 2003 server (LAN IP: 10.0.0.11) to a new Exch 2007 server (LAN IP: 10.0.0.9). All mailboxes were moved last night. On the LAN I can telnet to all the appropriate ports on the new email server (25, 443, 80, etc). From the Internet I cannot telnet to any of those ports.

I've attached the original config and the newest. All I changed was the line "name 10.0.0.11 MailServer" to "name 10.0.0.9 MailServer". I wrote the config to memory.

Can someone look at this config and tell me why email won't flow into the mail server from the web? I'm at a complete loss.

Thanks in advance!!

Ed
PIX-cfg-010910-BEFORE-CHGS.txt
PIX-cfg-010910-LATEST.txt
Avatar of Glen Knight
Glen Knight
Flag of United Kingdom of Great Britain and Northern Ireland image
Have you tried simply restarting the firewall?

Also what do the logs say when you try to access it?
ASKER CERTIFIED SOLUTION
Avatar of Ken Boone
Ken Boone
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Glen Knight
Glen Knight
Flag of United Kingdom of Great Britain and Northern Ireland image
Presumably restarting will also do that? :-)
Avatar of Ken Boone
Ken Boone
Flag of United States of America image
Yes it will.  I didn;t see your post before I responded.
Avatar of IT
IT

ASKER

Clear xlate seems to have helped. Mail now flows into new mail server. Outbound mail works as well. Wow I wish I knew Cisco. ;)