Cisco Cisco Email Security Appliance C190 Guía Del Usuario
Chapter 3 Setup and Installation
3-46
Cisco IronPort AsyncOS 7.1 for Email Configuration Guide
OL-22158-02
Figure 3-2
Behind the Firewall Scenario / 2 Listeners, 2 IP Addresses Configuration
Notes:
•
2 Listeners
•
2 IP addresses
•
1 or 2 Ethernet interfaces (only 1 interface
shown)
shown)
•
SMTP routes configured
Inbound Listener: “InboundMail” (public)
•
IP address: 1.2.3.4
•
Listener on the Data2 interface listens on
port 25
port 25
•
HAT (accept ALL)
•
RAT (accept mail for local domains; reject
ALL)
ALL)
Outbound Listener: “OutboundMail” (private)
•
IP address: 1.2.3.5
•
Listener on the Data2 interface listens on
port 25
port 25
•
HAT (relay for local domains; reject ALL)
DNS can be configured to use Internet Root servers or
internal DNS servers
internal DNS servers
SMTP routes direct mail to proper groupware server
Firewall ports opened for appropriate services to and
from the IronPort appliance
from the IronPort appliance
Groupware server
(Exchange™, Domino™,
Groupwise™)
Ethernet interface: Data 2
IP interface: PublicNet (e.g. 1.2.3.4)
Public Listener:
“InboundMail”
Private Listener:
“OutboundMail”
Ethernet interface: Data 2
IP interface: PublicNet (e.g. 1.2.3.5)
SMTP
Firewall
Groupware Client
Internet