How to allow telnet access to one ip in dmz

Unanswered Question
May 24th, 2007
User Badges:


I'd like to allow telnet access to ip and from our internal zone which has the ip range Could someone please give me an example of how to do this, or point me in the right direction.

Many Thanks


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
hoogen_82 Thu, 05/24/2007 - 01:43
User Badges:
  • Silver, 250 points or more


By default from inside to dmz all access is permited. The only you got to have in place is a nat translation for IP's in internal lan to access dmz.

your config could be

nat (inside) 2

global (dmz) 2 interface

If you have access-list on your internal interface then you need to add the command

access-list inside_dmz extended permit tcp host eq 23

access-list inside_dmz extended permit tcp host eq 23

You dont need the above statements if you don't have an access-list.



Do rate if this post is helpful :)

dan_track Thu, 05/24/2007 - 02:32
User Badges:


Many Thanks for your reply. I forgot to mention that the I'm trying to access the ip's (i.e 192.168.1.x) I've configured on two switches which are in a DMZ which has public ip addresses.

Will the above still work. I was thinking of adding a route command to tell the network that 192.168.2.x is through interface4 on the pix.

Does the above change anything?



zulqurnain Thu, 05/24/2007 - 01:47
User Badges:
  • Bronze, 100 points or more


from what i have understood this is what you can do.

telnet inside

telnet inside

HTH, please rate it


This Discussion