General discussion

Locked

Cisco Pix Config

By rcoolman ·
I have a PIX (IOS v 6.1) with a mail server inside. I am looking for a way to block all outgoing SMTP traffic that doesn't come from my mailserver. For example, if one our systems is used to send Spam (not through the server), it won't result in our IP being blacklisted, because it the Pix intercepted it. ??

This conversation is currently closed to new comments.

5 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

by BFilmFan In reply to Cisco Pix Config

You need to create an access list with allows SMTP traffic only from the mail server.

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_61/config/mngacl.htm

Collapse -

by rcoolman In reply to

Ok. I had hoped for a bit more detail, but you can have the points.

Collapse -

by Greybeard770 In reply to Cisco Pix Config

Make a rule that allows traffic with destination port 25 (SMTP) from the mail server to all IP destinations. Follow that rule with one that blocks all traffic with destination port 25 from all internal IP to all external IP. This is also a real good idea to prevent viruses with their own SMTP engine from sending mail.

Collapse -

by rcoolman In reply to

Also sadly lacking in detail, and second to the punch. Better luck next time.

Collapse -

by rcoolman In reply to Cisco Pix Config

This question was closed by the author

Back to Networks Forum
5 total posts (Page 1 of 1)  

Related Discussions

Related Forums