Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
277
Views
3
Helpful
1
Replies

Access-list question

h-kholghi
Level 1
Level 1

‎06-16-2008 06:10 AM - edited ‎03-11-2019 05:59 AM

Hello,

We have a PIX 506 firewall and I need to allow a specific IP address, 141.157.129.77 to access a server inside the LAN on port #1999. I created a public IP address for the server but I am not so sure if the following command is correct.

access-list 101 permit tcp host 141.157.129.77 host “public ip address of our server” eq 1999

Thank you

Labels:
0 Helpful
1 Reply 1

dgroscost
Level 4
Level 4

‎06-16-2008 06:26 AM

Yes, that's correct.

You will need to apply the ACL to your outside interface -

access-group 101 in interface outside (as example)

Depending on your config, you may need to assign a static NAT to your server.

static (inside,outside) public.ip.address internal.ip.address netmask 255.255.255.255

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card