ACL COncerns

Unanswered Question
Dec 6th, 2007
User Badges:

Hi All,

I have a bunch of servers inside my network (all public IPs) and need to allow communications between a server in my site to another server outside of my site. I need to do this without it affecting current ACL 125.

Is the following line correct?

Access-list 126 permit tcp host <my ip> host <their ip> eq 8315.

If so, will this have any other affect on my network? Change made last week resulted in down time of other servers.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
JORGE RODRIGUEZ Thu, 12/06/2007 - 20:09
User Badges:
  • Green, 3000 points or more

Hi Brent, the acl is correct as long you have proper one-to-one nat for your local server and apply it to oustide interface in order to allow the inbound connection from outside server host IP to your inside local server.

ON your second concern on downtime it is hard to tell what had caused the downtime without having more detailed information of what was done. In your current acl example are you creating new acl 126 or is there an existing one, in any case if there is an existing one you are just adding another inbound acl statement to it and don't see how would this cause downtime, perhaps if you can elaborate what happened last we may understand better.




This Discussion