Hi
I want to setup a SMTP server that accepts email, changes the domain (but keeps the user part intact) and then deliver it to another SMTP.
ie
bob@help.com -> SMTP -> bob@works.com -> NewSMTP
Any help, I tend to use Postfix.
Ta
Hi
Thanks for the answer, the MX record will still need to point at the takeover companys mailserver, they then relay the email to our server (for the users at our site). So there is no problem the new mail reaching us, its more of a problem with 5.5 dealing with this mail arriving at the SMTP...
Hi
My mail server is current setup to accept <name>@mail.com and that all works great.
We have now been taken over by a new company and need to (for the time being until it can be sorted out fully) change all our email to <name>@new.com and the email to our employees will be relayed from the...
I didn't put um in. Hence why it didn't work :)
Got two of the three working now, the last ones a bit fiddly but now I know how...
Thanks for your help
Simon
OK thanks
Tried that but I now get this error
1d02h: NAT: map match D2
1d02h: NAT: dialer not up for Dialer2, no translation, dial and drop
I have had a fiddle with the dialer-lists but am unsure now how I now trigger a dialup???
Ta
They are all remote networks yes, all of them need some sort of NATing though. I have since found out that I need to use route maps, but I am unsure how they work...
Dialer 1 & 3 need a static nat as the other end can on route a single.
Dialer 2 needs to use NAT the source to the address given...
It all comes down to who is talking to who.
Passive means that the client does all the opening of connections (hence goes through firewalls nice) active on the other hand means that the server will try to open connections to the client (and firewalls gen dont like that much).
So a passive ftp...
Opps, think I have found the answer
access-list outside_in line 1 deny tcp any any object-group dropports log disable
access-list outside_in line 2 deny udp any any object-group dropports log disable
Bit of a pain that I have to do two lines, but I cant add a object-group if I use ip rather...
Hi
I have my PIX sending its logs to a Linux box, and this works fine, I like to see connections that have been refused, but a major amount on my external interface is TCP 137, 139, 389 and I would rather not see them, I have setup the first access-list on the PIX to drop these connections but...
Haha
I just found the answer, I was scanning this box from behind my PIX firewall and it was that that was responding with these ports (hence why it was reporting port that I did not even have open), I think it was the PIX's proxies that it was detecting :)
Anyway I just scanned from elsewhere...
I will check that out and let you know.
Thanks for the answer...
The odder thing mind you is that most of those ports are not even open on the box, so the response is most odd...
Thanks
Hi
Here is a port scan of my box, I am running IPF and it works nice, and I like it, but why does the scan say my machine is not firewalled?? and how can I stop it responding to the closed ports??? (if I check /var/logs/security I can see the firewall blocking connections, and also ping fails...
OK, had to work on some other stuff hence the slooow responce..
You know when things start really getting on you tits?? well this is becoming 1 of those :)
All the dialups work, but I am still having problems with the NAT's, I make a FTP connection to Dialer1 and that works, I make a...
Ahhh OK, all makes more sense now, OK I will remove the "sysopt connection permit-ipsec" and allow the IPSEC ports through, 1 last thing though, what interface will I need to filter traffic from a external VPN??? Does the firewall decrypt the traffic before it checks the ACL's on the outside...
Hi I have a PIX515e and have noticed that the access lists I though I had working for a VPN aint working as I expected. Here is a example of what I have
access-list nonatinside permit ip host 192.168.101.0 255.255.255.0 host 192.168.1.0 255.255.255.0
access-list inside_in permit ip host...
OK splendid, I think I have it working, so a big thanks for you help, 1 more minor thing if I may.
We are using a FTP conenction over this, but currently the FTP times out the first time (while all the connection dialup is done) and then when you retry it connect's. It sound like this command...
Thanks for the answer, its a real help.. These duplicated commands that are there for legacy alway catch me out...
1 more thing though if I may, this line...
"ip nat inside source list 1 interface Dialer1 overload"
how do I get this NAT to also effect Dialer2????
if I type the same this but...
Hi, sorry I have asked a question like this before, but failed to ever get a working answer, I have got further with this now, but am still running into trouble.
I think the problem is my lack of understanding on the dialer-groups (I have looked at the cisco online help, but it doesnt explain...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.