Greetings all! This is sort of elementary for everyone (and may be silly, once you hear what I'm doing...) but I'm stumped.
Here's what I've got:
- Xbox LIVE service: 88 UDP & 3074 TCP-UDP
I've searched around these forums and found help, but they were geared more towards the PIX 501. Anyways, here's what I've done:
- setup my xbox to a static IP (192.168.1.200)
- entered a service group with the above mentioned ports for both UDP and TCP
- created 3 NAT rules for those ports to go straight to the Xbox.
- added the xbox to a ACL so that those ports come into the Xbox
What I get, when testing, is this:
4 Jan 18 2008 20:01:18 106023 184.108.40.206 220.127.116.11 Deny udp src outside:18.104.22.168/55619 dst inside:22.214.171.124/3074 by access-group "outside_access_in" [0x0, 0x0]
In the "outside_access_in" group, I have:
1 True any Xbox360 Xbox_LIVE Permit Default
I'm not sure why, but the packets, when coming back inside, are being denied. I'm using ASDM to set this up and I know a lot of you like the command line. If any of you can offer any help, I can run a command using command line and give you any outputs.
Thanks for any help my friends.
Do you have the source ip's of xbox live?
Sorry, the Xbox_LIVE object group needs to be the destination port.
access-list outside_access_in extended permit udp any interface outside eq 88
access-list outside_access_in extended permit udp any interface outside eq 3074
access-list outside_access_in extended permit tcp any interface outside eq 3074