Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Cisco Employee

Xbox live

I have an ASA 5501 running latest code. Per the article at http://support.microsoft.com/kb/908874, I need to open the below ports. I have 5 Xboxes (when people come over) and they all have a static IP. My network is 192.168.0.x and is a /24 network.

Xbox LIVE requires the following ports to be open:

  • Port 88 (UDP)
  • Port 3074 (UDP and TCP)
  • Port 53 (UDP and TCP)
  • Port 80 (TCP)
  • port 1863 (UDP and TCP) (Kinnect)

I defined the various network ports as a service and then created 5 hosts called xbox1, 2, etc with a static IP.

I dont have access from the command line (forgot telnet and ssh passwords) , so from the gui, what do I do next?

Thanks

7 REPLIES

Xbox live

Hello Michael,

Do you have ASDM access that you can use to configure the ASA, if not you will need to perform a password recovery and then open those ports.

http://tools.cisco.com/squish/3ec1d

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
Cisco Employee

Re: Xbox live

Yes I do have ADSM.

Xbox live

Hello Michael,

So you already have a static one to one translation for those particular xbox units( each one of them has a public ip) right??

Now all you need to do is to create an acl on inbound direction on the outside interface opening the ports you need.

Let me know if this is enough clear.

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
Cisco Employee

Re: Xbox live

Sorry, I don’t have a clue on what to do next nor how to do it.

Re: Xbox live

Hello Michael,

Okay I want you to go to the comman-line interface on the ASDM,that  its on the Tools tab.

Now I want you to add the following commands:

Show run static ( From this output I will need the ones with the private IP address of the xbox machines)

Show run access-group ( From this I will need you to focus on the one that says access-group xxx in interface outside)

show run access-list xxxx ( Where the xxx is the one from the access-group we disccused before)

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
Cisco Employee

Re: Xbox live

OK, thanks for the help. It will be tonight before I can do this as I am remote and don’t allow access from the outside interface.

Re: Xbox live

Hello Michael,

I am more than glad to help,let me know any updates.

Please rate helpful posts!!!

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
589
Views
0
Helpful
7
Replies
CreatePlease to create content