Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Email not coming through the PIX 515 (5.2)

Status
Not open for further replies.
warmpapi

warmpapi

IS-IT--Management
Nov 15, 2000
42
US
Hi,

My question related to email traffic coming into my internal network from the outside (public internet).
I have a SIMS 4.0 mail server that is configured internally and mail seems to work ok internally. In fact, I can send messages externally as well to any of my public email accounts. The problem is that if I try and reply from my public account or send an email to my internal account from the outside I get an error. (now, I did setup a static statement for the mailserver and I also have conduits in there for pop3 and smtp. The MX record was also changed and now pointing to my mailserver but i still get this error:) Any suggestions???
------ Here is your List of Failed Recipients ------
<rob.jimenez@coollab.com>


Host not found.

-------- Here Is Your Returned Mail --------
Received: FROM cdcexbhnt01.cdc.cable.comcast.com BY cdcanti01.cdc.cable.comcast.com ; Tue Apr 10 14:56:18 2001 -0400
Received: by cdcexbhnt01.cdc.cable.comcast.com with Internet Mail Service (5.5.2653.19)
id <2V1HZ255>; Tue, 10 Apr 2001 14:53:12 -0400
Message-ID: <9FFEB87BA63FD3118506009027887E090398E880@divexcg01.div.cable.comcast.com>
From: &quot;Jimenez, Robert&quot; <Robert_Jimenez@cable.comcast.com>
To: &quot;'rob.jimenez@coollab.com'&quot; <rob.jimenez@coollab.com>
Subject: testing
Date: Tue, 10 Apr 2001 14:53:09 -0400
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2653.19)
Content-Type: text/plain;
charset=&quot;iso-8859-1&quot;


testing
 
Sort by date Sort by votes
This is what I did

setup a static mapping on my pix 515

static (inside,outside) xxx.xxx.xxx.xxx 192.168.1.1 netmask 255.255.255.255

note: xxx.xxx.xxx.xxx is the fully qualified IP address that was set up in my DNS records (Basically my MX record)

I also used the following conduit commands

conduit permit tcp host xxx.xxx.xxx.xxx eq smtp any
conduit permit tcp host xxx.xxx.xxx.xxx eq pop3 any

In setting up this way your mail server is protected. You only open up port 25 and 110 to the outside.

I also beleive if you use the fixup protocal command on smtp it sets up the mailguard feature on your firewall, limiting the smtp commands that can be used.




-Danny






 
Upvote 0 Downvote
Thanks Danny....

That is exactly what I did. Here is what fixed it...

no fixup protocol smtp

I think you did mention that in your response. What I was told is that email applications such as Exchange and SIMS use esmtp, so the mailguard is what was preventing mail to come through, but once I eliminated the fixup smtp protocol, all was working fine.

Thanks

Rob
 
Upvote 0 Downvote
I think 5.3 fixed the issues with the smtp fixup

No worries

The important thing is that your problem is fixed.



-Danny






 
Upvote 0 Downvote
Ahhh, ok...I'll go out and download 5.3 now.

Thanks for your help
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
657
Sameer258
Sameer258
Sparrow4
  • Locked
  • Question
Configure Avaya IPO R11 / VM Pro + Office365 or Exchange for voicemail to email
Replies
2
Views
577
Johnkite
Johnkite
ChrisFairley
  • Locked
  • Question
Downloads failing through ASA 5520
Replies
1
Views
137
iggsterman
iggsterman
Russtoleum
  • Locked
  • Question
SW GVC won't route traffic through sonicwall to offsite tunnel unless it leases an ip on the same su
Replies
1
Views
165
Russtoleum
Russtoleum
brownmab53
  • Locked
  • Question
PIX 525 ASA not allowing DHCP addresses to pass through to router
Replies
0
Views
145
brownmab53
brownmab53

Part and Inventory Search

Sponsor

Back
Top