Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

PIX 506e and Moneris Debit Terminals

Ok, newbish to cisco stuff, just put in a new 506e. Everything is working so far, except now my high speed debit/credit terminals will not communicate through the router. Moneris says port 443 has to be "open". Well, it is, isn't it? I can check my account balance online, which is a secure https connection, with no problems. Do i need to create 2 specific rules to allow traffic on that port to those terminals?

Thank you for your time.

Maury

8 REPLIES
New Member

Re: PIX 506e and Moneris Debit Terminals

What's the direction of the TCP/443 traffic? From the outside to the inside or from the inside to the outside?

New Member

Re: PIX 506e and Moneris Debit Terminals

Well, thats a good question. I'm assuming its outside to inside, which should have no issues. We swipe the debit card, and it contacts a server somewhere, then sends back a reply. But, its not communicating properly, so it reverts to the dial backup. I can ping from the terminal, but its communication to its server is not functioning.

New Member

Re: PIX 506e and Moneris Debit Terminals

What does your NAT setup look like?

sh nat

sh global

Feel free to sanitize the output if you need to.

New Member

Re: PIX 506e and Moneris Debit Terminals

Not much to sanitize really :)

sh nat

nat (inside) 0 access-list inside_outbound_nat0_acl

nat (inside) 1 0.0.0.0 0.0.0.0 0 0

sh global

global (outside) 1 interface

New Member

Re: PIX 506e and Moneris Debit Terminals

"Well, thats a good question. I'm assuming its outside to inside, which should have no issues."

I beleive i meant "inside to outside", sorry if that caused any confusion.

Green

Re: PIX 506e and Moneris Debit Terminals

So it's...

Terminals -> Inside PIX -> Outside PIX -> Internet -> Server

Is this traffic from the terminal to server go over vpn or is that nat exemption for something else?

New Member

Re: PIX 506e and Moneris Debit Terminals

I have a VPN setup using the Pix and the cisco VPN client. This will be for my remote users to use for remote access so i can lock down the rdp ports currently used.

New Member

Re: PIX 506e and Moneris Debit Terminals

Looks like it was an issue with one of my wireless bridges not getting rebooted after the new router install.

Thanks for the effort though!

Maury

536
Views
0
Helpful
8
Replies
CreatePlease to create content