Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Westi on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

MMIS Exchange in DMZ?

Status
Not open for further replies.
b166er

b166er

IS-IT--Management
Jun 30, 2003
7
US
Hi I am new to the site and to Security.
I am CCNP, not saying that it means all that much, but I am pretty familiar with just about all I have dealt with up till now.

I got the PIX up and running doing PAT from inside and no configured DMZ.
I have an Exchange 2000 server on the inside interface as well as an MMIS server.
My problem is, I would like for all of my internal users to be able to sync with the MMIS server (which is also internal being nat'ted to a public IP).

In other words, I would like to be able to set all of my Mobile devices to sync to the public IP of the MMIS server, internally and externally, but there is a configuration i am missing that will allow internal devices to directly connect with external IPs that are being nat'ted.

Let me know if you need more data.

--JoeR
 
Sort by date Sort by votes
I gave the DNAT feature of that last night, as I am using an internal DNS server, but it didn't work. I didn't turn proxy arp off for the same reason.
alias (inside) 207.168.61.15 192.168.1.6 255.255.255.255

Will alias log to the ASA with an xlate or a conn?

In other words, will i be able to see it with the show xlate or show conn, or is there another command that I can use to watch the firewalls efforts to reroute the destination?

--JoeR
 
Upvote 0 Downvote
HI.

> I can use to watch the firewalls efforts to reroute the destination?
The pix will not reroute. That's the problem here.

There are several possible solutions.

Since you probably already have an internal DNS server, then the best solution is to configure internal DNS with the needed record(s) that will point clients to the internal IP when looking for the MMIS server.
When the client is "outside", it will use external DNS servers and will get the public IP address.

The alias command is not a good solution for your scenario.

Bye


Yizhar Hurwitz
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sparrow4
  • Locked
  • Question
Configure Avaya IPO R11 / VM Pro + Office365 or Exchange for voicemail to email
Replies
2
Views
642
Johnkite
Johnkite
AllenH12
  • Locked
  • Question
Bandwidth in Cisco ASA 5505
Replies
2
Views
334
AllenH12
AllenH12
sudhakar346
  • Locked
  • Question
Cisco ASA inside to DMZ issue over public IP
Replies
2
Views
167
kythri
kythri
basball
  • Locked
  • Question
Punching a whole in DMZ
Replies
1
Views
109
joepc
joepc
disturbedone
  • Locked
  • Question
proxy.pac not working correctly in IE11
Replies
0
Views
167
disturbedone
disturbedone

Part and Inventory Search

Sponsor

Back
Top