FirewallWizards
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [fw-wiz] firewall-wizards Digest, Vol 7, Issue 4

from [Tedeski, William] [Permanent Link][Original]
To: "'firewall-wizards@listserv.icsalabs.com'" <firewall-wizards@listserv.icsalabs.com>
Subject: Re: [fw-wiz] firewall-wizards Digest, Vol 7, Issue 4
From: "Tedeski, William" <William.Tedeski@acs-inc.com>
Date: Wed, 8 Nov 2006 12:54:52 -0600
Delivered-to: sp-com-lists@consult.net
Delivered-to: fwwizards-list2@consult.net
Delivered-to: firewall-wizards@listserv.icsalabs.com
List-archive: <https://listserv.icsalabs.com/pipermail/firewall-wizards>
List-help: <mailto:firewall-wizards-request@listserv.icsalabs.com?subject=help>
List-id: Firewall Wizards Security Mailing List <firewall-wizards.listserv.icsalabs.com>
List-post: <mailto:firewall-wizards@listserv.icsalabs.com>
List-subscribe: <https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards>, <mailto:firewall-wizards-request@listserv.icsalabs.com?subject=subscribe>
List-unsubscribe: <https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards>, <mailto:firewall-wizards-request@listserv.icsalabs.com?subject=unsubscribe>
Reply-to: Firewall Wizards Security Mailing List <firewall-wizards@listserv.icsalabs.com>
Sender: firewall-wizards-bounces@listserv.icsalabs.com


Here is a simple access list for the inside interface of a PIX
Line 1 permits SMTP from your authorized mail server with out a log messages
Line 2 permits SMTP from any other system and will generate a log messages


Access-list inside-interface permit tcp mail-server any eq SMTP
Access-list inside-interface permit tcp any any eq SMTP log
Access-list inside-interface any any

Bill Tedeski


>
> Anyway, what I'm looking to do, and what I need help with.... I want to
> know if it's possible to log all outbound port 25 connection attempts,
> EXCEPT those that come from our authorised MX's and mail servers. AND I
> would like to be able to do this in addition to the normal logging that
> takes place.
>
> So, is it possible? 

_______________________________________________
firewall-wizards mailing list
firewall-wizards@listserv.icsalabs.com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [fw-wiz] Pix 535 Logging, Behm, Jeffrey L.
Next by Date:  Re: [fw-wiz] Pix 535 Logging, Paul Melson
Previous by Thread:  Re: [fw-wiz] Communication Device Protocols from Externalrouter d irectthrough Firewall, Horvath, Kevin M.
Next by Thread:  Re: [fw-wiz] firewall-wizards Digest, Vol 7, Issue 4, Tedeski, William
Indexes:  [Date] [Thread] [Top] [All Lists]