Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chris Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Cisco Pix 506e

Status
Not open for further replies.
Mac2118

Mac2118

MIS
Apr 11, 2007
24
US
Hello everyone.

We've been having difficulties with getting put on spam lists and we're worried that someone has a virus out there spamming, so I want to block port 25 on ALL computers EXCEPT the exchange server and the spam server.

I was thinking the psudocode would resemble the following:

tcp deny all eq smtp
tcp allow 192.168.1.81 eq smtp
tcp allow 192.168.1.106 eq smtp

I know what I want to do, I just don't know how to go about doing this. I've tried searching online to find the solution to this problem and have come up empty.

does anyone have any ideas on how to go about this?
 
Sort by date Sort by votes
This should do the trick

access-list allow-outbound permit tcp host 192.168.1.81 any eq smtp
access-list allow-outbound permit tcp host 192.168.1.106 any eq smtp
access-list allow-outbound deny tcp any any eq smtp
access-list allow-outbound permit ip any any
access-group allow-outbound in interface inside



Brent
Systems Engineer / Consultant
CCNP, CCSP
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

MottoK
  • Locked
  • Question
Cisco ISE blank GUI
Replies
0
Views
359
MottoK
MottoK
intel233
  • Locked
  • Question
Cisco ASA - VPN Question
Replies
6
Views
423
intel233
intel233
intel233
  • Locked
  • Question
Cisco ASA 5510 -Static NAT Help
Replies
8
Views
466
intel233
intel233
AllenH12
  • Locked
  • Question
Bandwidth in Cisco ASA 5505
Replies
2
Views
249
AllenH12
AllenH12
WhosYourDiffie
  • Locked
  • Question
Cisco ASA 5506 VPN for Avaya Phones
Replies
0
Views
110
WhosYourDiffie
WhosYourDiffie

Part and Inventory Search

Sponsor

Back
Top