Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1220
Views
0
Helpful
2
Replies

PIX 7.1(2) Access-list not working

damrut5763
Level 1
Level 1

‎11-20-2006 11:12 AM - last edited on ‎03-25-2019 05:36 PM by Community Manager

Hello,

can someone help me I'm running 7.1(2) on PIX 515E UR and my access-list is denying port 8888 eventhough I have it open up is there a bug in the software for that port. Here is the access-list

access-list dmz_access_in extended permit tcp host ADP-1 object-group TIMECLOCKS eq 8888

I have other ports open for this connection and they work!

Labels:
0 Helpful
2 Replies 2

Patrick Iseli
Level 7
Level 7

‎11-20-2006 02:00 PM

Can you post the whole ACL and the error log message. Just this line itself will not help to figure out the problem.

sincerely

Patrick

0 Helpful

dflick
Level 1
Level 1

‎11-22-2006 12:31 PM

I am assuming the following:

host ADP-1 is in your DMZ.

you can do "ping dmz ADP-1" and get a reply

TIMECLOCKS are on the inside.

you can do "ping inside " and get a reply

If the above is true, do you have a static that allows TIMECLOCKS to be seen in the DMZ?

Can you do a netstat -a on the ADP-1 server to see if it is listening on port 8888.

You are probably getting a "deny no connection" or a "no translation"

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card