Pix 515 with a Barracuda SPAM FW and SMTP and HTTP access

Discussion in 'Cisco' started by Joel, Jan 4, 2007.

  1. Joel

    Joel Guest

    I have a Pix 515 v.6.3 using PAT. I have a static translation from my
    outside network to my inside mail server both for HTTP and SMTP (they
    are on the same box).

    I have an outside ACL that sends all SMTP/HTTP traffic to this
    SMTP/HTTP box on the inside

    I have a Barracuda SPAM FW inside

    I have an SMTP server with HTTP web based email access inside (they on
    the same box. I know, I know)

    Visually, it looks like this.

    Dragons ) ------PixFW ----/ --------------------SMTP/HTTP server

    On the Pix, I can setup the static translation to point to either the
    Barracuda -which will forward to the SMTP OK - but I lose connectivity
    with HTTP. Or, I can ignore the Barracuda -which I don't want to do -
    and just send all SMTP and HTTP requests to my HTTP server.

    Is there a way to have the SMTP traffic head to the Barracuda (then
    forward the SMTP server) and the HTTP traffic head to by HTTP mail
    gateway without a static translation in the meantime keeping the
    HTTP/SMTP box the same?
    Joel, Jan 4, 2007
    1. Advertisements

  2. Joel

    Chad Mahoney Guest

    you can use:

    static (inside,outside) tcp x.x.x.x 25 25 netmask

    static (inside,outside) tcp x.x.x.x 80/443 80/443 netmask

    access-list myacl permit tcp any host x.x.x.x eq 25
    access-list myacl permit tcp any host x.x.x.x eq 80/443

    Now these are PAT translations not static translations, you can only use
    a static translation with one internal IP and one external IP.
    Chad Mahoney, Jan 4, 2007
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.