ACL to Permit Access to Port 8090

Unanswered Question
Oct 30th, 2008
User Badges:

Pix 515E 6.3(5)


I need to permit my users access to an external website that uses port 8090.


Would this be correct?

access-list permit tcp 192.168.1.0 255.255.255.0 any eq 8090


Would I also need:

Fixup protocol http 8090


Thanks.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
guibarati Thu, 10/30/2008 - 10:25
User Badges:
  • Bronze, 100 points or more

If you put only the access-list it will work.

If you want the PIX to verify traffic of port 8090 in http layer 7 protocol you need fixup.


You must see if there is already a NAT from inside going outside and it's not using an access list with port on it. If so you need to add the same line of access list in the NAT ACL

Actions

This Discussion