cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
328
Views
0
Helpful
2
Replies

Secure path access

ronald.ramzy
Level 1
Level 1

Hi,

I have users behind the firewall and need to access telnet session to the xtrader.prudential.com port 10200.

we have DHCP so user IP changes and cannot configure user on static IP, what is the secure way to allow this on Cisco ASA 5510

LAN IP segment is 192.168.20.0/24

2 Replies 2

jj27
Spotlight
Spotlight

I'm assuming you are talking about local users accessing the telnet session outbound through the firewall.

You'll need the IP of the host you provided, which from my ping DNS resolves it to 12.34.101.191.

Whatever your access-list name is for inside-to-outbound traffic, in this example we'll use the name inside_out, the rule would look like this:

access-list inside_out extended permit tcp 192.168.20.0 255.255.255.0 host 12.34.101.191 eq 10200

thank you.

Can you help to configure

() How could I allow ssh from inside to outside only. Block SSH from outside to inside

() Block internet browsing from inside to outside ( inside lan 192.168.20.0/24 )

() resolve DNS queries for Windows DNS Server ( windows DNS Server = 192.168.1.100 )

We have SSH attack on natted IP for proxy-server, how to resolve it

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: