smtp server using global IP

Discussion in 'Cisco' started by admin too, Sep 28, 2004.

    New incoming-only smtp gateway was installed by simply changing static
    mapping to go to the smtp gateway and everything works fine except the mail
    server is now using the Global outside address so it's failing reverse
    lookup for outgoing mail (some spam filters are complaining). Configuration
    is complicated by webserver on DMZ which needs to smtp to mail server on
    inside, too. Do I assign an extra static such as for outbound
    and change at ISP's DNS? When I added this address it broke
    the outgoing mail, I guess because of conflict with static mapping for
    Thanks for your help., MX (inside smtp gateway is (dmz webserver
    server via exchange server (currently appears as global outside IP which
    fails reverse lookup. I have address availble I could assign)


    access-list inside_in permit tcp host any eq smtp
    access-list outside_in permit tcp any host eq smtp
    access-list dmz_access_in permit udp any any eq domain
    access-list dmz_access_in permit tcp host host
    eq smtp
    ip address outside
    ip address inside
    ip address dmz
    global (outside) 1
    global (dmz) 1
    nat (inside) 1 0 0
    nat (dmz) 0 access-list dmz_nonat
    nat (dmz) 1 0 0
    static (inside,outside) netmask 0 0
    static (inside,dmz) netmask 0 0
    static (dmz,outside) netmask 0 0
    access-group outside_in in interface outside
    access-group inside_in in interface inside
    access-group dmz_access_in in interface dmz
    route outside
    admin too, Sep 28, 2004
    If your webserver is sendmail and the SMTP gateway is sendmail you can setup
    a mailertable on the webserver so it can talk to the SMTP gateway using the
    local IP address rather than trying to go out and come back in on the same
    interface (which PIX can't do anyway).
    none, Sep 30, 2004
