Re: pix firewall and mail server

2001-12-09 Thread J C Lawrence
On Tue, 4 Dec 2001 11:42:15 -0700 Mike V <[EMAIL PROTECTED]> wrote: > I was under the impression that 53/tcp was for zone xfers, and > 53/udp was for queries, so you may want to confirm to avoid > opening more than you need to. DNS uses TCP of the returned record exceeds the size of a single UD

Re: pix firewall and mail server

2001-12-07 Thread Rantcla
Unless you are advertising your own DNS, specifically opening port 53 is not necessary. Most companies I am aware of, have an ISP for example, advertising their DNS on the Internet. V/r Rob Clark

RE: pix firewall and mail server

2001-12-07 Thread Filer, Eddie (ZA - Johannesburg)
"wali" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Monday, December 03, 2001 1:51 AM Subject: Re: pix firewall and mail server > You should also open ports 53/tcp and 53/udp for dns queries so one can find > your mail server by checking MX record from your dns. >

Re: pix firewall and mail server

2001-12-06 Thread blitzkrieg
On Tue, Dec 04, 2001 at 11:42:15AM -0700, Mike V wrote: > I was under the impression that 53/tcp was for zone xfers, and 53/udp was > for queries, so you may want to confirm to avoid opening more than you need > to. Not necessarily, port 53/tcp is used for queries which are more larger than 512 b

Re: pix firewall and mail server

2001-12-06 Thread Jason Kohles
ts. > Mike > > - Original Message - > From: "Sa?a Popravak" <[EMAIL PROTECTED]> > To: "wali" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> > Sent: Monday, December 03, 2001 1:51 AM > Subject: Re: pix firewall and mail server > > > > You

Re: pix firewall and mail server

2001-12-05 Thread jamesworld
Do you have a static mapping for that device and does your Access-list point to the outside IP of that static? DNS should not stop you from receiving the mails. It helps when you want to send, but you could point the DNS to another inside machine and handle it that way. At 07:50 11/29/01, y

Re: pix firewall and mail server

2001-12-05 Thread Rantcla
You will need to set up a static route entry to allow all outside traffic via an outside (global address - legitimate) address seen by the internet to the inside (NAT/PAT) address in addition to your smtp permit entry. Use the following example in PIX configuration mode: static (inside,outside

Re: pix firewall and mail server

2001-12-05 Thread Mike V
<[EMAIL PROTECTED]> Sent: Monday, December 03, 2001 1:51 AM Subject: Re: pix firewall and mail server > You should also open ports 53/tcp and 53/udp for dns queries so one can find > your mail server by checking MX record from your dns. > > Best wishes, > Pope > >

Re: pix firewall and mail server

2001-12-04 Thread Sa?a Popravak
You should also open ports 53/tcp and 53/udp for dns queries so one can find your mail server by checking MX record from your dns. Best wishes, Pope - Original Message - From: "wali" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, 29.November 2001 14:50 Subject: pix fire

Re: pix firewall and mail server

2001-12-02 Thread Saša Popravak
You should also open ports 53/tcp and 53/udp for dns queries so one can find your mail server by checking MX record from your dns. Best wishes, Pope - Original Message - From: "wali" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, 29.November 2001 14:50 Subject: pix fi