Forum Discussion
CirrusRouting outbound smtp traffic through F5 LTM
Needing assistance in properly architecting the outbound routing of email from an internal SMTP server through an F5 LTM appliance sitting in a DMZ. We use Symantec's Messagelabs spam product for all inbound and outbound email and our SMTP server will ultimately be sending outbound through the BIG-IP to Message labs for delivery. Has someone had experience with this that can offer some tips?
Thx
5 Replies
jgranieriNimbostratus
You will at the very least need a Forwarding VIP for SMTP to allow mail outbound, and probably a another standard VIP for inbound mail.
You can get more secure by adding an irule to limit what mail servers can send outbound mail.
mpete32_168869I understand. The inbound email routing is already setup and working great. I have the Big-IP set as the default gateway and will create the forwarding VIP per your suggestion.
Vitaliy_SavransNacreous
or you can configure NAT for outbound mail.
Visvesh_138292Hi,
Here are the steps for sending out the traffic through LTM.
1.Create the VIP in LTM. 2.Create the SNAT and associate with the VIP. 3.Your SMTP server traffic should point to the VIP. 4.Open the Firewall rule as below. Source:SNAT IP. Destination:Lab server Port:XX.
Regards Visvesh.
- Visvesh_138292
Forgot to include one more steps:
- Create the Pool and the destination server ip and port numbers as pool member and associate with the VIP.
Visvesh.
