Solved

what firewall rule do I use to allow email through my firewall

Posted on 2011-03-21
5
573 Views
Last Modified: 2012-05-11
I'm running exchange 2003, what firewall rule do I enable to allow email through my cisco ASA 5500? I set an allow from any to my exchange servers public IP address with TCP/SMTP protocol on port 25, but I'm still not recieving email. I also just had the public DNS entry mail for mail,mydomain.com. Am I just too impatient?
0
Comment
Question by:knfitz
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 2

Expert Comment

by:PowerToaster
ID: 35183137
Well a normal allow for smtp would be something like this.

permit tcp any host 10.10.110.1 eq smtp.

You may just be impatient but you could try sending something to the server from a public email like hotmail or gmail as a test.

Are you doing any NAT or is the public IP assinged directly to your mail server.

http://www.mxtoolbox.com/ has a number of very good free tools for remotely testing you mail servers configuration which may help you trouble shoot this.
0
 

Author Comment

by:knfitz
ID: 35183157
when I do the check dns in exchange system manager it says the domain is not valid. I set the fqdn to mail.mydomain.org
0
 

Expert Comment

by:aevegan
ID: 35183179
Sounds like maybe your missing the NAT rule (if you're using NAT)
0
 

Author Comment

by:knfitz
ID: 35183186
no, I have the nat rule in place and it's working. It looks like my isp is not done with my dns records. Let me give ti a little time.
0
 
LVL 6

Accepted Solution

by:
Lee_YCP earned 500 total points
ID: 35183982
Can you do a 'sho run' and post that so we can see your config and ACLs?  be sure to change or xx out your public IPs and pasword hashes.

Also, understand that your ISP may be configuring your DNS MX record, but you may still need to configure a DNS MX record internally to allow internal clients to find that domain.
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains how to install and use the NTBackup utility that comes with Windows Server.
Concerto Cloud Services, a provider of fully managed private, public and hybrid cloud solutions, announced today it was named to the 20 Coolest Cloud Infrastructure Vendors Of The 2017 Cloud  (http://www.concertocloud.com/about/in-the-news/2017/02/0…
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question