+ Post New Thread
Results 1 to 7 of 7
Internet Related/Filtering/Firewall Thread, CISCO ASA5505 Firewall (port forwarding) in Technical; Hi Guys, I have recently purchased a CISCO ASA5505 Firewall, and want to use it to push email traffic through ...
  1. #1
    phughes's Avatar
    Join Date
    Oct 2007
    Location
    Burnley
    Posts
    73
    Thank Post
    10
    Thanked 3 Times in 1 Post
    Rep Power
    14

    CISCO ASA5505 Firewall (port forwarding)

    Hi Guys,

    I have recently purchased a CISCO ASA5505 Firewall, and want to use it to push email traffic through to our mail filtering device.

    I have created a rule to allow external traffic on port 25 through to the device, but am unsure if this is enough to get it to work. I think i may need to create a port forward to force the traffic on.

    Can anyone advise me? (this is a live system and do not want to turn something off in order to test it, as i am unsure)

    Thanks,
    Pete

  2. #2

    Join Date
    Oct 2010
    Location
    Illinois
    Posts
    2
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Have you created a NAT rule to translate the external IP to the internal IP of the mail filtering device? It depends on what version of ASDM you're using, but it should be in Configuration -> Firewall -> NAT rules. If you're using the CLI I'm already out of my league

  3. #3
    phughes's Avatar
    Join Date
    Oct 2007
    Location
    Burnley
    Posts
    73
    Thank Post
    10
    Thanked 3 Times in 1 Post
    Rep Power
    14
    I am using the ASDM version 6.3.

    I figured that NAT-ing the address wouldn't be required if i were pushing all the SMTP trafffic through from the external interface to the internal interface to an internal IP assigned to the device?

  4. #4

    Join Date
    Oct 2010
    Location
    Illinois
    Posts
    2
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    From what I'm reading at the link below, it appears that you need a NAT rule if you want to pass traffic between interfaces with two different security levels:
    Cisco ASA 5500 Series Configuration Guide using the CLI, 8.2 - Configuring NAT Control* [Cisco ASA 5500 Series Adaptive Security Appliances] - Cisco Systems

  5. #5
    timbo343's Avatar
    Join Date
    Dec 2005
    Location
    Leeds/York area, North Yorkshire
    Posts
    2,772
    Thank Post
    251
    Thanked 220 Times in 168 Posts
    Rep Power
    87
    I dunno if this will help you but we have a seperate IP address for our mail too which is set in our ASA5510 box. Basically i had to set up a route from the Static outside address to the inside address and thats all i did.

  6. #6
    phughes's Avatar
    Join Date
    Oct 2007
    Location
    Burnley
    Posts
    73
    Thank Post
    10
    Thanked 3 Times in 1 Post
    Rep Power
    14
    So you mean, just adding a static route of the external IP of the device to the internal IP of the device? or to the internal IP of the email server?

  7. #7
    timbo343's Avatar
    Join Date
    Dec 2005
    Location
    Leeds/York area, North Yorkshire
    Posts
    2,772
    Thank Post
    251
    Thanked 220 Times in 168 Posts
    Rep Power
    87
    The external IP to the internal IP of my Mail server.

SHARE:
+ Post New Thread

Similar Threads

  1. Port forwarding problems
    By ryanster in forum Internet Related/Filtering/Firewall
    Replies: 5
    Last Post: 29th January 2010, 07:56 AM
  2. [Ubuntu] IPTables Port Forwarding
    By localzuk in forum *nix
    Replies: 17
    Last Post: 3rd June 2009, 10:18 PM
  3. VPN with Cisco ASA5505 and SBS 2003
    By -Jim in forum Wireless Networks
    Replies: 4
    Last Post: 23rd April 2009, 03:19 PM
  4. Cachepilot port forwarding
    By localzuk in forum General Chat
    Replies: 6
    Last Post: 29th October 2008, 08:55 AM
  5. port forwarding problem
    By IA76 in forum Wireless Networks
    Replies: 3
    Last Post: 15th August 2008, 01:29 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •