Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Cisco Pix 515E blocking port 25
- Thread starter datadan
- Start date
vdalehubbard
IS-IT--Management
Well, with a PIX 515E firewall, everything is blocked unless you tell it to allow it. If stuff is coming in and out through port 25 which is email (SMTP), then there is an access-list or something allowing SMTP or port 25. Look for that in the PDM or command line and see.
The PIX by default blocks all incoming traffic but allows all outgoing traffic. If you need to block incoming and outgoing SMTP traffic, then you need to configure an ACL. If you have an access list already configured and applied to the outside interface, make sure it is not permitting SMTP traffic, this ACL controls incoming traffic. For outgoing traffic you need to configure an ACL and apply it to the inside interface, that is is one is already configured. The link below is an excellent guideline for your task:
the corresponding line would be..
access-list BlockSMTP deny tcp any any eq smtp
access-group BlockSMTP in interface inside
access-group BlockSMTP in interface outside
Because by default, the PIX permits all outgoing traffic, but no incoming traffic.
Also, there is a forum specifically for the PIX device.
Computer/Network Technician
CCNA
access-list BlockSMTP deny tcp any any eq smtp
access-group BlockSMTP in interface inside
access-group BlockSMTP in interface outside
Because by default, the PIX permits all outgoing traffic, but no incoming traffic.
Also, there is a forum specifically for the PIX device.
Computer/Network Technician
CCNA
- Status
