Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

PIX 7.1(2) Access-list not working

Hello,

can someone help me I'm running 7.1(2) on PIX 515E UR and my access-list is denying port 8888 eventhough I have it open up is there a bug in the software for that port. Here is the access-list

access-list dmz_access_in extended permit tcp host ADP-1 object-group TIMECLOCKS eq 8888

I have other ports open for this connection and they work!

2 REPLIES

Re: PIX 7.1(2) Access-list not working

Can you post the whole ACL and the error log message. Just this line itself will not help to figure out the problem.

sincerely

Patrick

New Member

Re: PIX 7.1(2) Access-list not working

I am assuming the following:

host ADP-1 is in your DMZ.

you can do "ping dmz ADP-1" and get a reply

TIMECLOCKS are on the inside.

you can do "ping inside " and get a reply

If the above is true, do you have a static that allows TIMECLOCKS to be seen in the DMZ?

Can you do a netstat -a on the ADP-1 server to see if it is listening on port 8888.

You are probably getting a "deny no connection" or a "no translation"

295
Views
0
Helpful
2
Replies
CreatePlease to create content