Velocity Reviews - Computer Hardware Reviews
Home Forums Reviews Guides Newsgroups Register Search
Member Login:

Velocity Reviews > Newsgroups > Computing > Cisco > Cisco PIX 515e IMAP issue

Reply
Thread Tools

Cisco PIX 515e IMAP issue

 
 
HandleX84 HandleX84 is offline
Junior Member
Join Date: May 2010
Posts: 3
 
      05-18-2010
familiar with cisco networking - a tad new to pix configs.

REQUEST: allow specified outside ip ranges to internal exchange via port 143. this is an email archiving service that mcafee provides. they come into a specific account on the exchange box and basically pull off all the email to there cloud based system.

ISSUE: i test the connection from a webportal down to the internal exchange box - i keep getting a connection issue. mcafee says its in the pix. everything on the exchange box + the mcafee services is def setup right. i know its in the pix, just dont know where.
when i test the connection - i see IN the ACL on the outside that the hitcount goes up but yet i get a failure to connect!!
i did not setup this pix. any help would be much appreciated!!

Specified OUTSIDE MCAFEE ranges: 208.65.x.x /21 & 208.81.x.x /22

Internal exchange box: (IN) 192.168.x.x (NAT OUT) 64.123.x.x
The LAN has its own Public IP (.30) and the exchange has its OWN Public IP (.40)


1 ACL exsists - outside coming in and reads the following: (inside out has no limits as there is no ACL)

pixfirewall# show access-list 101
access-list 101; 9 elements
access-list 101 line 1 permit icmp any any echo-reply (hitcnt=20)
access-list 101 line 2 permit icmp any any source-quench (hitcnt=0)
access-list 101 line 3 permit icmp any any unreachable (hitcnt=990)
access-list 101 line 4 permit icmp any any time-exceeded (hitcnt=565)
access-list 101 line 5 permit tcp any host 64.123.x.x eq smtp (hitcnt=889)
access-list 101 line 6 permit tcp 208.65.x.x 255.255.248.0 host 64.123.x.x eq imap4 (hitcnt=34)
access-list 101 line 7 permit tcp 208.81.x.x 255.255.252.0 host 64.123.x.x eq imap4 (hitcnt=0)
access-list 101 line 8 permit tcp 208.65.x.x 255.255.248.0 host 64.123.x.x eq 993 (hitcnt=10)
access-list 101 line 9 permit tcp 208.81.x.x 255.255.252.0 host 64.123.x.x eq 993 (hitcnt=0)



i cant help but to think its SOMETHING in the ACL. because it appears the IMAP (SSL OR NON) request gets to the ACL and produces an increase in the hitcnt. however, doesnt make it to the exchange box.


Do you guys need more config logs or can you steer me in what could be causing this issue?
 
Reply With Quote
 
 
 
 
HandleX84 HandleX84 is offline
Junior Member
Join Date: May 2010
Posts: 3
 
      05-18-2010
ive read that if u upgrade from pix firewall v 6.3.1 to 7 - its been known to fix similiar issues. but how is that possible?
 
Reply With Quote
 
 
 
Reply

« NetFlow on a 2600 series | Cisco ATM problem »
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Cisco PIX 515E Bandwidth Issue sardonic2@gmail.com Cisco 1 12-20-2007 01:15 PM
PIX 515e IMAP Problems kck126 Cisco 0 09-06-2006 01:31 PM
Curier-IMAP and imap.create() Henrik Ormåsen Ruby 0 08-19-2006 06:29 AM
Cisco System PIX 515E - Memory and PIX OS upgrade Speed3ple Cisco 0 04-04-2006 10:24 AM
Cisco PIX 6.1 (4) - Model PIX 515E Romeo Cisco 1 03-20-2006 03:26 PM



Advertisments
 


Powered by vBulletin®. Copyright ©2000 - 2013, vBulletin Solutions, Inc..
SEO by vBSEO ©2010, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57