[afnog] Need help

Gis Fred fmulisa at gmail.com
Thu Aug 11 09:54:17 UTC 2011


Hi All,

Just a small help, something strange here, all my mail servers are sending
out with an outside interface ip,

Yet the outbound access-list seems to be fine,

Is there any one conversant with firewalls+NAT and sort me out? here are the
configs.

!start
global (outside) 1 interface

nat (inside) 1 192.168.201.0 255.255.255.0 0 0

static (inside,outside) tcp 192.168.201.12 smtp  10.1.1.3 smtp netmask
255.255.255.255  0 0
static (inside,outside) tcp 192.168.201.12 https 10.1.1.3 https netmask
255.255.255.255 0 0
static (inside,outside) tcp 192.168.201.12 pop3  10.1.1.3 pop3 netmask
255.255.255.255  0 0


access-list outside permit tcp any host 10.1.1.3 eq smtp
access-list outside permit tcp any host 10.1.1.3 eq https
access-list outside permit tcp any host 10.1.1.3 eq pop3
access-list outside deny   tcp any any
!end

Thanks
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://afnog.org/pipermail/afnog/attachments/20110811/6eb939f5/attachment.html>


More information about the afnog mailing list