prevent all outbound port 25 traffic on all but one IP
I have a network that is blacklisted. I need to stop all traffic on port 25 from leaving the ASA except from one IP address (my security mail appliance).
I'm learning (but still weak) on ASA CLI.
Here's code I've found on the web:
access-list inbound_on_inside permit tcp any host 1.1.1.1 eq smtp
access-list inbound_on_inside deny tcp any any eq smtp
access-list inbound_on_inside permit ip any any
access-group inbound_on_inside in interface inside
I'm assuming the 1.1.1.1 will be my appliance IP and that this is ALL I need to do to stop SMTP traffic from any machine/device inside the lan from leaving the ASA except the IP I have inserted in the 1.1.1.1 location. If not, please advise.
Also, I would like to monitor any SMTP traffic hitting the ASA, now being blocked, to find the rogue station(s). All my anti-virus scans are showing the machines to be healthy and clean.
Thank you for any thoughts/help/constructive
daver
I'm learning (but still weak) on ASA CLI.
Here's code I've found on the web:
access-list inbound_on_inside permit tcp any host 1.1.1.1 eq smtp
access-list inbound_on_inside deny tcp any any eq smtp
access-list inbound_on_inside permit ip any any
access-group inbound_on_inside in interface inside
I'm assuming the 1.1.1.1 will be my appliance IP and that this is ALL I need to do to stop SMTP traffic from any machine/device inside the lan from leaving the ASA except the IP I have inserted in the 1.1.1.1 location. If not, please advise.
Also, I would like to monitor any SMTP traffic hitting the ASA, now being blocked, to find the rogue station(s). All my anti-virus scans are showing the machines to be healthy and clean.
Thank you for any thoughts/help/constructive
daver
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.