Access-list Implementation

Unanswered Question
Aug 30th, 2007
User Badges:

Dear All;


It is very easy topic;

i have router 2800 series directly connected to internet and PIX 525 is behind this router. the e1 of PIX is connected to my internal router 2800. i configured these devices in such a way that my intranet work is totally behind the PIX 525. but External router is directly connected to internet cloud. now i need to receive desired SNMP, TELNET, traffic to my internal server/PC. i try to use different access-lists on my PIX bt PIX doesnt allow SNMP traffic to come in and it doesnt work. i know this issue would be solved by correct access-list implementation.

please guide me in this senario.


regards


Soshomile

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
soshomile Fri, 08/31/2007 - 03:30
User Badges:

Dear All;


(2nd Request)

It is very easy topic;

i have router 2800 series directly connected to internet and PIX 525 is behind this router. the e1 of PIX is connected to my internal router 2800. i configured these devices in such a way that my intranet work is totally behind the PIX 525. but External router is directly connected to internet cloud. now i need to receive desired SNMP, TELNET, traffic to my internal server/PC. i try to use different access-lists on my PIX bt PIX doesnt allow SNMP traffic to come in and it doesnt work. i know this issue would be solved by correct access-list implementation.

please guide me in this senario.


regards


Soshomile

Jon Marshall Fri, 08/31/2007 - 04:45
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Hi


Can you send copy of pix config minus any senstitve info so we can have a look at config.


Couple of other questions


1) Does your pix outside interface have a public IP or are your port-forwarding from your router ?


2) Do you see any hits on the access-list on the pix ?


3) Could you give us some IP address details such as destination server for the SNMP/Telnet traffic and from what source ?


Jon

Actions

This Discussion