Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

Allow file copy from a microsoft server on DMZ to another one in inside

Hi,

I have two servers: one in a DMZ (actually, it's not a real DMZ, just another lan with a security level lower than inside, but it does not accept connections from internet).

I'd like to have a batch on the DMZ server which does a xcopy myfile.txt \\inside_server_ip\share

What ports shall I open /how shall I configure an ASA 5505???

Thanks a lot

Ciao

1 REPLY

Re: Allow file copy from a microsoft server on DMZ to another on

Francesco,

The easy way is:-

access-list dmz permit ip host x.x.x.x y.y.y.y

x.x.x.x - dmz server

y.y.y.y - inside server

If you want to lock it down to specific tcp/udp ports and protocols then write the acl to allow:-

netbios-ssn

Kerberos

MS Directory Services

SMB/CIFS

HTH.

232
Views
0
Helpful
1
Replies
CreatePlease to create content