Solved

Route email with cisco asa 5515

Posted on 2015-01-13
5
13 Views
Last Modified: 2016-10-14
Hi:

I have a cisco ASA 5515X with two WAN connections and one LAN connection.

As far as I understand, I hace the firewall configured to allow SMTP traffic through WAN2 interface, but not through WAN1.

However, I'm having trouble sending email because the public IP is not matching the inverse DNS record. This record points to the public address of WAN2, but the email is labeled with the IP address of WAN1. How can this happen?

How do I force the outgoing emails to go through WAN2?

By the way, you will notice in the config file that WAN interfaces have private IP's. This is because there is an ADSL router between this interface and the public network.

Thanks
0
Comment
Question by:ScreenFox
  • 2
  • 2
5 Comments
 
LVL 46

Expert Comment

by:Craig Beck
ID: 40547889
No config is attached.
0
 

Author Comment

by:ScreenFox
ID: 40548297
Here it is.
cisco.txt
0
 

Author Comment

by:ScreenFox
ID: 40551051
anybody there?
0
 
LVL 46

Accepted Solution

by:
Craig Beck earned 500 total points
ID: 40551064
Your default WAN link is WAN1, so all traffic will go down that link.  The problem is that the ASA doesn't do policy-based routing, so you can't pick and choose which interface different types of traffic are sent down.  To achieve this you'd need to put a separate ASA on each internet feed and use a standard IOS router to do PBR instead, to send traffic to the correct ISP.
0

Featured Post

Now Available: Firebox Cloud for AWS and FireboxV

Firebox Cloud brings the protection of WatchGuard’s leading Firebox UTM appliances to public cloud environments. It enables organizations to extend their security perimeter to protect business-critical assets in Amazon Web Services (AWS).

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Occasionally, we encounter connectivity issues that appear to be isolated to cable internet service.  The issues we typically encountered were reset errors within Internet Explorer when accessing web sites or continually dropped or failing VPN conne…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
I've attached the XLSM Excel spreadsheet I used in the video and also text files containing the macros used below. https://filedb.experts-exchange.com/incoming/2017/03_w12/1151775/Permutations.txt https://filedb.experts-exchange.com/incoming/201…

680 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question