Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Open Port 4

Hello all,

Cisco Newbie here.

We have just put a gateway between our PIX 515e and our email server. This gateway needs port 4 open to receive its updates from the manufacturer.

Could someone please advise the securist way to do this?

Thanks in advance

Stephen

1 REPLY

Re: Open Port 4

The securist way to do it allow only vendor source IP address.

E.g

Outside Vendor Public IP: 10.10.10.100

Inside Gateway Local IP : 20.20.20.100

Public IP for Gateway : 30.30.30.100

TCP Services , TCP port 4, and/or UDP 4

Create static NAT for your local IP system and assign public IP of 30.30.30.100

Static (inside,outside) 30.30.30.100 20.20.20.100 255.255.255.255 0 0

access-list outside_access_in permit tcp host 10.10.10.100 host 30.30.30.100 eq 4

access-list outside_access_in permit udp host 10.10.10.100 host 30.30.30.100 eq 4

access-group outside_access_in in interface outside

Rgds

Jorge

111
Views
0
Helpful
1
Replies
CreatePlease to create content