f



PIX 515 email issues with FQD

Hi all we have a fully qualified domain name pointing at our PIX's outside 
interface from the Internet. Currently we are forwarding port 110 to our 
mail server (temporary solution).



The problem were having is that when were outside the company all work works 
fine using the FQDN as the incoming pop3 server, however when we're on the 
company LAN it doesn't work and we have to change it to the private LAN IP 
address of the mail server.



I'm guessing there is something to do with the PIX?



Any help will be greatly appreciated to resolve this.



Manu Thanks,



Craig.


0
corb (3)
7/2/2007 6:33:31 AM
comp.dcom.sys.cisco 25313 articles. 0 followers. Post Follow

1 Replies
8812 Views

Similar Articles

[PageSpeed] 32

On 2 Jul, 14:33, "corb" <c...@noemail.com> wrote:
> Hi all we have a fully qualified domain name pointing at our PIX's outside
> interface from the Internet. Currently we are forwarding port 110 to our
> mail server (temporary solution).
>
> The problem were having is that when were outside the company all work works
> fine using the FQDN as the incoming pop3 server, however when we're on the
> company LAN it doesn't work and we have to change it to the private LAN IP
> address of the mail server.
>
> I'm guessing there is something to do with the PIX?
>
> Any help will be greatly appreciated to resolve this.
>
> Manu Thanks,
>
> Craig.

Your correct - as far as I know, unless anyone else has got this
working, the PIX won't allow this.

Who host's the DNS for your site?  If you hosted your own DNS the PIX
has a neat way of translating the DNS entries for hosts conencting via
the Internet.  Take a look at the static command here if you are using
6.3 code:-

http://www.cisco.com/en/US/docs/security/pix/pix63/command/reference/s.html#wp1026694

James

0
James
7/2/2007 7:00:31 AM
Reply:

Similar Artilces:

Cisco pix 515 + static routes between 2 cisco pix
Hello everybody... I have a big problem with static routes... i have 2 cisco pix 515 with ios 6.3 and 2 interfaces A) cisco pix "A" have 3 VPN tunnels to 3 diferent remotes office Network A (remote office 1) Network B (remote office 2) Network C (remote office 3) B) Cisco pix "B" has no vpn tunnels, but i need to those guys which are connected to this pix... have access to vpn`s tunnel (Network A-Network B-Network C) on PIX "A". C) internal interfaces of Pix "A" and "B" are in the same network and have connectivity eachother (i can ping int...

Cisco pix 515+ static routes between 2 cisco pix
Hello everybody... I have a big problem with static routes... i have 2 cisco pix 515 with ios 6.3 and 2 interfaces A) cisco pix "A" have 3 VPN tunnels to 3 diferent remotes office Network A (remote office 1) Network B (remote office 2) Network C (remote office 3) B) Cisco pix "B" has no vpn tunnels, but i need to those guys which are connected to this pix... have access to vpn`s tunnel (Network A-Network B-Network C) on PIX "A". C) internal interfaces of Pix "A" and "B" are in the same network and have connectivity eachother (i can ping int...

Pix 515
I'm having an issue that I'm trying to solve. The pieces of the puzzle are: Microsoft Exchange 2003 Cisco Pix 515 Cisco 2600 router remote company (domain) servicing our epaystub administrator software Our organization has signed up to use a payroll service through an external company. The company has asked that I setup an email account for the software to use as a point of contact. The software basically relays an email message through our system when a user requests a password, etc. I have checked all settings on the Exchange server to allow mail relaying through this company&#...

Cisco PIX 501-515 Site-to-Site VPN Issue
I'm deferring to the experts in this group to help me solve a nightmare of a PIX configuration issue. I have a PIX 501 located in Connecticut and a PIX 515 located in New York and am trying to put together a site-to-site VPN. The remote access on the 515 works like a charm, but I've been unable to make any headway with the site-to-site. The only way that I've been able to initiate the connection, in fact, is to launch the packet tracer on the 515 to 'send' a packet from an IP on the 515's network to an IP on the 501's. Everything comes back okay, but if I try to...

Cisco PIX to PIX VPN issue
I have a client with two locations that I'm setting up a a point-to- point VPN. The tunnel was up and idle earlier today, it's nonexistant now, and I'm out of ideas.. At no time was I able to ping across the PIX's. Pix #1 also has a VPN config for remote clients that works fine. Here's pertinent info from each configs: PIX #1 name 192.168.1.0 CRVSH access-list nonat permit ip 10.0.0.0 255.255.255.0 172.16.10.0 255.255.255.0 access-list nonat permit ip 10.0.0.0 255.255.255.0 CRVSH 255.255.255.0 access-list 101 permit ip 10.0.0.0 255.255.255.0 CRVSH 255.255.255.0 ip addres...

Email access through Pix 515
So i'm having trouble with some pop accounts. The set up we have is that we have two different subnets off a pix firewall. the 10.10.0.0 subnet host one exchange server that hosts one domain. The 10.150.0.0 network host a merk email server that host multiple domains. The problem we have is that all users are located behind the 10.10.0.0 network and they connect to the 10.150.0.0 network to get email of the merk server, suck as pop accounts, but when i add the command access-list old_email_in permit ip 10.150.0.0 255.255.0.0 10.10.0.0 255.255.0.0 then email can be sent from the domains tha...

Cisco PIX 515 for sell
Hardware: CSC PIX-4FE 4-port 10/100 Enet I/F CSC PIX VPN-ACCEL PIX IPSec Accelerator CSC PIX-515E-UR-BUN Chas 2FE Pts PIX was buyed in Dec.2002. Anyone interested in buying this PIX? You have a price? On 27 May 2004 06:30:15 -0700, werner.rost@zf.com (wr) wrote: >Hardware: CSC PIX-4FE 4-port 10/100 Enet I/F > CSC PIX VPN-ACCEL PIX IPSec Accelerator > CSC PIX-515E-UR-BUN Chas 2FE Pts > >PIX was buyed in Dec.2002. Anyone interested in buying this PIX? "Frog" <frog@toad.com> wrote in message news:3b11h0591leufl1062d...

PIX 515 Interface issues
I used to have my desktop PC plugged directly into my DSL modem but now I have the PC and the modem plugged into the pix and now quite often my NIC will stop sending and receiving data completly, I check the status on the pix interface and its up/down. Windows reports as connected. If I disable the NIC then try and re-enable it crashes. When the interface fereezes up, if I plug the PC directly into the modem it still won;t work. although this points to the NIC on the PC being at fault it never happened before the pix was int he picture. has anyone seen this before? when it works, i...

Pix 515 VLAN NAT0 issues
I am having problems with my Pix, it goes offline for a short perior, plus get bad ftp performance with it. I have 6 interfaces outside, and 5 vlan interfaces on the inside, I have all the NAT's built. Not sure if there is something I am doing incorrect. I have 4 more PIX's and am probably going to upgrade to 7.0 but will have to relearn the pix in the new commands. Any help would be greatly appreciated My firewall config is as follows: dimepix1> en Password: ****** dimepix1# show run : Saved : PIX Version 6.3(5) interface ethernet0 100full interface ethernet1 100full interfac...

cisco pix VPN routing issues
Hi All! I've got 4 site-to-site VPN tunnels to PIX 515E in my central office (A). From this office I can ping branch offices B, C and D. From offices B, C and D I can also ping my central office A. However, my problem is that I can't ping office C from office B or office D from office C so on. He is the question: is there a way to configure vpn routing for packets to travel from office B to office C via central office A? I know I can configure a vpn link between B and C but it's not an ideal scenario for me. On 26 Feb, 13:13, "inventica" <vfedose...@f2s.com> wro...

PIX 515 to PIX 515 via Internet & IPSec, should I get a VAC?
We currently have a Point to point T1 connecting 2 Offices and are thinking about upgrading the remote office to a 3 Meg internet Connection and having it connect to the HQ's 6 Meg Internet connection. HQ currently has a PIX 515 and runs about 5 Home Office Point to Point IPSec VPN connections and a half dozen or so IPSec VPN Clients. We were thinking of adding a Pix 515 to the remote office and have it Point to Point IPSec VPN into HQ. The Remote office has in it 6-12 people at any one time, and 1/2 of them use the connection to get to data at HQ and the other half is the inter...

PIX/Cisco VPN/Ports Issue
Hello everyone, At my work place, we have Cisco PIX 515E(6.3.2) that provides VPN connectivity to the remote staff using Cisco VPN software v4.0.2(D). However, some of staff reported us that they couldn't use Cisco VPN software because of agency's firewall. But, at home or other agenies, other staff can connect to our VPN without problem. We asked the agency's tech guys to help us out by openning following ports. IP protocol 50(ESP) IP protocol 51(AHP) UDP 500(ISAKMP) UDP 4500 VPN address: xxx.xxx.xxx.xxx but, it still didn't work. We know that PIX 515 doesn't su...

Cisco PIX 515 telnet problem
Hi all, I am setting a PIX 515 running on 6.3(5) for one of my customers. I have no problem telnetting from DMZ network to the DMZ interface ip address. But when I tried to telnet from Outside (internet) to the outside interface ip address, I just can't. I have no problem accessing the PDM from Outside and DMZ via https. I have already key in the command "telnet 0.0.0.0 0.0.0.0 outside" but it doesn't seem to work at all. Guys, have any idea on what else could be the reason? Thanks. Hi, You can only telnet to the outside interface using SSH for security reasons...

Cisco PIX 515E Bandwidth Issue
I've got a 515E, when I open a single download from a remote source (kernel.org) at it gets about ~1800KB/s. I open a second and I get ~1800KB/, I open a third I get ~1800KB/s so every connection stays around there all adding up to ~5400KB/s I noticed this first over a VPN, when I could only get a max of 1800KB/ s from just one connection, but later I was able to keep adding ftp sessions and jumping up 1800KB/s per ftp session. It just seems I cannot get anywhere near my max on a single connection. The CPU Load does shoot up when transferring this much over the VPN to ~70% Has anyone s...

Web resources about - PIX 515 email issues with FQD - comp.dcom.sys.cisco

Sports Illustrated Swimsuit Issue - Wikipedia, the free encyclopedia
Through the years many models, such as Cheryl Tiegs , Christie Brinkley , Paulina Porizkova , Elle Macpherson , Rachel Hunter , Rebecca Romijn ...

Potential Post-IPO Issues For Facebook: Mobile Revenue, Overvaluation, Google AdSense
The road ahead may be rough for Facebook, post- initial public offering . At least that is the speculation of Michael Mothner, founder and chief ...

National Review Dedicates Entire Issue to Stopping Trump
The National Review is a conservative publication, but the editors there have had enough of Donald Trump . So much so that they asked 22 conservative ...

Status Update – Persistent Issues Require More Troubleshooting
Since I’ve been getting some emails, for those just joining the fun, or those who know what’s been going on, a quick site status recap: In order ...

IRS WIPES ANOTHER HARD DRIVE: Sackless GOP Leaders Issue Sternly Worded Memo in Response
By Kathryn Watson Leading members of Congress are ripping IRS officials for erasing a computer hard drive after a federal judge ordered it to ...

Blizzard 2016: New York Gov. Andrew Cuomo Issues Travel Ban « CBS New York
All New York City roads, Port Authority bridges and tunnels and roads on Long Island are shut down until further notice.

The Oscars Could Make Big Changes To Address Its Diversity Issue
The Film Academy has already made statements saying they want to take steps in order to improve diversity among both Oscar nominees and Academy ...

Ford Under Investigation For Door Latch Issues, Again
Just two months after federal regulators shut the book on a probe into why the door latches on certain Ford vehicles refused to stay shut, the ...

Equities Analysts Issue Forecasts for Leidos Holdings Inc’s FY2017 Earnings (LDOS)
Leidos Holdings Inc (NASDAQ:LDOS) – Research analysts at Jefferies Group issued their FY2017 earnings per share estimates for shares of Leidos ...

Republican Lawmakers Issue Obamacare Subpoena To Treasury Sec. Jack Lew
'Here’s the thing about stonewalling: At some point the facts will come to light'

Resources last updated: 1/24/2016 3:33:28 AM