Also, if wanting to trigger multiple ports just adding another line to the ACL is sufficient, or specifying "range" whether it's tcp or udp. As in, no need in creating a new ACL for every port that you want forwarded, and with it a new route-map.
Will Reflexive ACLs accomplish port triggering for say XBOX Live, MMoRPGs, or any other program that multiple users on the same network may require the inbound ports to be dynamically allowed through the router once a session has been initiated by an internal user.
Obviously restricting which ports can be dynamically "reflected".
I think I'm on the right track, but the next question I have is because I have PAT being used on my WAN interface is the placement of my temporary ACL. The outbound ACL for monitoring, if placed on the outbound for that interface should be looking at the ip:port post PAT, correct? So, should I be placing the outbound temporary ACL on my internal interface, and the inbound ACL on the WAN interface? Or am I just completely lost.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...