Four years ago I purchased a 501 to protect my home network. I bought the Cisco because of their reputation and that's what my employer uses - not because I knew how to program them or how to really use them. It's been silently working fine since then but now I need to change the configuration and I would really appreciate some help. Please keep in mind I know nothing about this stuff so don't assume I will be able to read between the lines to understand what you are really saying. If I was a *lot* younger I might have tried to take the time to learn PIX but it is just so obscure and convoluted to my non-networkingthings mind.
Anyhow, here is what I need to do. Up till now I have just been keeping the bad guys out with the 501. Now I need to let myself in from the outside. I have an AXIS IP camera on my network that I want to access from the internet so I need to change the 501's configuration to allow access to it in as narrow a way as possible so as not to make me more vunerable to the bad guys. I should preface this by mentioning that this is the second time I have asked for help here. The first help I received seemed promising but I could get things to work and the person who was helping appears to have moved on. I think I understood what he directed me to try but as I mentioned earlier I probably didn't understand some basic thing that should have.
I have included the PIX configuration I am currently running at the end of my explanation of what I need to do. The camera has an IP address of 192.168.1.11. It is connected by way of an wireless access point through an ethernet hub connected to the 501. I get to the camera by bringing up a browser window and typing in the camera's address and pressing enter. The camera then puts up an internally generated web page with a password request dialog box. After I enter my password the camera thens displays a web page with a window containing a "streaming video" of what it sees in the form of repeating JPG images which for all practical purposes appear to be a normal video image.
The 501 is directly connected to a Motorola cable modem which pretty much keeps the same assigned public address - say for the sake of illustration it's 123.123.123.001. I need (presumably) to be able to type 123.123.123.001 into a browser from the internet and see what video the camera's internal web site is putting up.
I would greatly appreciate it if someone could tell me how to configure the 501 to make this happen.
CURRENT CONFIGURATION ATTACHED
Jim, my appologies, missed keyword " host "
access-list 100 permit tcp any host 123.123.123.001 eq 80
let me know how it works out.