As stated earlier...validate your MX record and dns records. Install version 6.0 of the PIX IOS.
Setup a static route like this: static (inside,outside) tcp (external_ip) www (internal_ip) www netmask 255.255.255.255 With a corresponding Access-list entry: access-list 100 permit tcp any host (external_ip) eq www This is the most "efficient" way to perform what your speaking of. However, if you insist on having the OWA server install on the LAN make sure you perform the following: 1. Install latest service pack. 2. Install latest updates from windowsupdate.microsoft.com 3. Install URL Scan from Microsoft for your IIS. However, be carefull with this one if your using SSL encryption. 4. Obtain a SSL certificate from Verisign if you haven't done so already and setup SSL option on the virtual server (/exchange) -----Original Message----- From: Tom Meunier [mailto:[EMAIL PROTECTED]] Sent: Monday, December 17, 2001 3:55 PM To: Exchange Discussions Subject: RE: Allowing internal SMTP but not external I'm wondering if you could give them an invalid SMTP address, that wouldn't route externally. [EMAIL PROTECTED] or something. Works with Exchange 2000 but you didn't mention if you were using E2k or 5.5. > -----Original Message----- > From: Walden H. Leverich [mailto:[EMAIL PROTECTED]] > Posted At: Monday, December 17, 2001 03:41 PM > Posted To: MSExchange Mailing List > Conversation: Allowing internal SMTP but not external > Subject: Allowing internal SMTP but not external > > > OK, I think I know the answer to this, but I told a customer I'd ask. > > I have a customer that wants to limit users from receiving > email from the > internet. No problem, remove the SMTP address and they won't > be able to > send/receive SMTP mail. However, now they have a requirement > for these users > to receive SMTP mail from an internal machine (AS/400 sending > e-mail to > local users). Short of going to the SMTP proxy (Firewall-1) > and saying drop > messages for user1 and user2 and user3 etc. there is no way I > can see of > preventing external SMTP mail while allowing internal SMTP > mail. Did I miss > something? > > -Walden > > ------------ > Walden H Leverich III > President > Tech Software > (516)627-3800 x11 > [EMAIL PROTECTED] > http://www.TechSoftInc.com > > > _________________________________________________________________ > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > Archives: http://www.swynk.com/sitesearch/search.asp > To unsubscribe: mailto:[EMAIL PROTECTED] > Exchange List admin: [EMAIL PROTECTED] > _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]
