Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Cisco ASA 5505 blocking for smtp port 25?

Posted on 2013-06-11
4
Medium Priority
?
1,952 Views
Last Modified: 2013-06-13
Hi
I am new to Cisco, and do not understand command line or how to get access to it so need to do alterations via Graphical Interface. Hopefully someone can guide me :)

I have 2 mail servers

1 old that we want to remove as not supporting ssl/tls
On this one to send we use port 2225. Cisco Opens WAN:2225 to LAN:2225(spamfilter) that forwards to LAN:25(Imail)
This works fine

Now i want to setup 2nd server
I want to use port 25
so WAN:25 to LAN:25
However when setting this up in Outlook I can not get connection with port 25

The only way i can gain access is if i VPN into the Servers LAN, then use LANIP:25 it works

Therefore i concluded that fault is with cisco even through port 25 is open

Where do I start to look. Anyone has any suggestions how to PD this or how to allow port 25 through cisco using the graphical interface if thats the problem?

Thanks
Morten
0
Comment
Question by:morten444
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 10

Accepted Solution

by:
Senthil Kumar earned 2000 total points
ID: 39240651
You need to map the real server IP to a Virtual IP and forward the port 25 the virtual IP. Configuration explained in the below link


http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080862017.shtml
0
 

Author Comment

by:morten444
ID: 39241785
Hi Thanks for your reply
I am trying to follow to Grapical guide and I can add the smtp allow rule on top
Then i want to "insert after" and create the "any --> any less secure networks" to permit it

problem is that I have no idea how to find "any less secure networks" in the list of option
I onl have "any" and all the local servers and and all the interfaces on the cisco router
I just cant get the "any less secure  networks"

Any idea?
There are only webservers/mail servers behind this ciso, no office network

See attached how it is before i start to add my rule
When i add my rule  the one ith "any less secure networks" is removed.
Then when i add "insert after" i cant get it back, only any --> any
cisco-asa-5505.jpg
0
 
LVL 10

Expert Comment

by:Senthil Kumar
ID: 39243642
Create an Object for your mail server and select the destination as your Mail server object which u hv created.
0
 

Author Closing Comment

by:morten444
ID: 39243971
Hi Thanks for your reply
Not sure what solved it but solved.
I did not have to create anything extra in the end
I keept checking port 25 if open
The only thing i have is one access rule opening port 25 and one NAT from LAN to WAN

This is how it always was but for some reason it just started to work
Thanks for good and helpfull links anyway. Points given
cheers
0

Featured Post

Veeam Disaster Recovery in Microsoft Azure

Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On Feb. 28, Amazon’s Simple Storage Service (S3) went down after an employee issued the wrong command during a debugging exercise. Among those affected were big names like Netflix, Spotify and Expedia.
There’s a movement in Information Technology (IT), and while it’s hard to define, it is gaining momentum. Some call it “stream-lined IT;” others call it “thin-model IT.”
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …

715 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question