(MAIL SERVER)LAN------CHECKPOINT------CISCO---->
INTERNET
|
DMZ(MAIL RELAY and DNS)
All mail is coming into the Mail relay server and
forwarded in the internal exchange server. All is working fine. Mailrelay server
is statically natted with private DMZ segments ip and a public ip address
(local.arp) on the firewall.
But with this configuration, the internet has no
direct access to the exchange server and as a result cannot pop mail out of the
exchange server because all the mail relay does it store and forward mail. It
does not store email.
WE would like our sales users able to pop mail out
of the exchange server. Is there a way to allow port 110 from the exchange
server through the DMZ?
Thanks for your
help