- 论坛徽章:
- 0
|
CISCO
These are generally applicable to most (all?) CISCO firewalls:
First you need to create an access list describing the traffic (X.X.X.X is the IP address of your mail server. Add more lines if you have more than one)
access-list acl_out permit tcp host X.X.X.X any eq 25
access-list acl_out deny tcp any any eq 25
... any other outbound rules you may want go here ...
access-list acl_out permit ip any any
Then you need to apply that access-list to the inside interface (because it is being checked on the inside before it goes out)
access-group acl_out in interface inside
我的邮件服务器ip被cbl.abuseat.org列入黑名单了.
网站提示,可以在路由器中这样设置,就是上述的CISCO设置,
第一句这样理解吗?
只允许外网访问内网该ip的25端口,也就只允许内网该ip的25端口可以向外发包吗?
我始终没有明白配置的含义,所以导致我也不能配置好我的ar18-63-1.
这已经是第二次,有什么好办法吗? |
|
免费注册
发表于 2008-08-23 11:49
发表于 2008-08-25 09:26