I am installing a 515pix. I am going to hang a Exchange server off one
of the four interfaces. I have seen the page cisco has about the
bridgehead server, but these guys just blew their wad on the pix (:-),
they don't want to buy another server and another exchange. The inside
is higher so I shouldn't have to do anything to allow users to get to
the server, but coming back into the inside from dmz1..this is what I
have:
access-list exchange permit tcp 192.168.1.0 host 192.168.20.2 eq 139
access-list exchange permit udp 192.168.1.0 host 192.168.20.2 eq 137
access-list exchange permit udp 192.168.1.0 host 192.168.20.2 eq 138
access-list exchange permit tcp 192.168.1.0 host 192.168.20.2 eq 135
The inside is 192.168.1.0 network. The dmz1(mail) is 192.168.20.0, with
the exchange server being 192.168.20.2.
Anyone done this without the bridgehead?
thanks,
ipguru
**As Marvin Gaye said-Let's Get it On!
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
