Hi,
I just purchased a PIX 501 to secure a small corporate network. I have it connected to our Cisco 1600 router on the external side and to our Cisco catalyst switch (along with all other servers & workstations) on the inside. Functionally it works fine.
However, I am having lots of trouble sending mail. Getting lots of bouncebacks to the tune of:
"Your message did not reach some or all of the intended recipients.
The following recipient(s) could not be reached:
'somebody@outside.com' on 2/2/2004 2:27 PM
550 Relaying denied for <somebody@outside.com>"
We generally use a W2K Server as a NAT server, which also contains our email package. So the e-mail clients are configured to use "mail.mycompany.com", it recognizes it as internal, and all is well.
However, with the PIX, it looks like my request is going outside the PIX, looking back externally for "mail.mycompany.com", and my mail server thinks it's trying to be used as a relay, and denies the request.
How can I tell the PIX that all 10.0.0.x addresses (our internal subnet) are AOK, and to use LOCAL dns to resolve "mail.mycompany.com"?
The documentation that comes with the PIX is awful. Shows you how to physically connect it -- that's about it. Have found a few helpful web sites, but still need a good "How-To" guide with practical examples. Any web sites to this effect would be appreciated as well!
Thanks!
I just purchased a PIX 501 to secure a small corporate network. I have it connected to our Cisco 1600 router on the external side and to our Cisco catalyst switch (along with all other servers & workstations) on the inside. Functionally it works fine.
However, I am having lots of trouble sending mail. Getting lots of bouncebacks to the tune of:
"Your message did not reach some or all of the intended recipients.
The following recipient(s) could not be reached:
'somebody@outside.com' on 2/2/2004 2:27 PM
550 Relaying denied for <somebody@outside.com>"
We generally use a W2K Server as a NAT server, which also contains our email package. So the e-mail clients are configured to use "mail.mycompany.com", it recognizes it as internal, and all is well.
However, with the PIX, it looks like my request is going outside the PIX, looking back externally for "mail.mycompany.com", and my mail server thinks it's trying to be used as a relay, and denies the request.
How can I tell the PIX that all 10.0.0.x addresses (our internal subnet) are AOK, and to use LOCAL dns to resolve "mail.mycompany.com"?
The documentation that comes with the PIX is awful. Shows you how to physically connect it -- that's about it. Have found a few helpful web sites, but still need a good "How-To" guide with practical examples. Any web sites to this effect would be appreciated as well!
Thanks!