Secure path access

Unanswered Question
Jun 1st, 2009
User Badges:


I have users behind the firewall and need to access telnet session to the port 10200.

we have DHCP so user IP changes and cannot configure user on static IP, what is the secure way to allow this on Cisco ASA 5510

LAN IP segment is

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
jjohnston1127 Mon, 06/01/2009 - 05:46
User Badges:
  • Silver, 250 points or more

I'm assuming you are talking about local users accessing the telnet session outbound through the firewall.

You'll need the IP of the host you provided, which from my ping DNS resolves it to

Whatever your access-list name is for inside-to-outbound traffic, in this example we'll use the name inside_out, the rule would look like this:

access-list inside_out extended permit tcp host eq 10200

ronald.ramzy Mon, 06/01/2009 - 06:03
User Badges:

thank you.

Can you help to configure

() How could I allow ssh from inside to outside only. Block SSH from outside to inside

() Block internet browsing from inside to outside ( inside lan )

() resolve DNS queries for Windows DNS Server ( windows DNS Server = )

We have SSH attack on natted IP for proxy-server, how to resolve it


This Discussion