Improve company productivity with a Business Account.Sign Up

x
?
Solved

Route email with cisco asa 5515

Posted on 2015-01-13
5
Medium Priority
?
21 Views
Last Modified: 2016-10-14
Hi:

I have a cisco ASA 5515X with two WAN connections and one LAN connection.

As far as I understand, I hace the firewall configured to allow SMTP traffic through WAN2 interface, but not through WAN1.

However, I'm having trouble sending email because the public IP is not matching the inverse DNS record. This record points to the public address of WAN2, but the email is labeled with the IP address of WAN1. How can this happen?

How do I force the outgoing emails to go through WAN2?

By the way, you will notice in the config file that WAN interfaces have private IP's. This is because there is an ADSL router between this interface and the public network.

Thanks
0
Comment
Question by:ScreenFox
  • 2
  • 2
4 Comments
 
LVL 47

Expert Comment

by:Craig Beck
ID: 40547889
No config is attached.
0
 

Author Comment

by:ScreenFox
ID: 40548297
Here it is.
cisco.txt
0
 

Author Comment

by:ScreenFox
ID: 40551051
anybody there?
0
 
LVL 47

Accepted Solution

by:
Craig Beck earned 2000 total points
ID: 40551064
Your default WAN link is WAN1, so all traffic will go down that link.  The problem is that the ASA doesn't do policy-based routing, so you can't pick and choose which interface different types of traffic are sent down.  To achieve this you'd need to put a separate ASA on each internet feed and use a standard IOS router to do PBR instead, to send traffic to the correct ISP.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

I recently had the displeasure of buying a new firewall at one of the buildings I play Sys Admin at. I had to get a better firewall than the cheap one that I had there since I was reconnecting the main office to the satellite office via point-to-poi…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Watch the video to know the simple way to remove or recover or reset lost or forgotten passwords of Outlook PST file. With Kernel Outlook Password Recovery tool such operation is very easy to perform. It is a freeware with limitation to use with 500…

605 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question