Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
289
Views
0
Helpful
1
Replies

Access Lists On a PIX 515

jezelingpmg
Level 1
Level 1

‎12-06-2005 01:07 AM - edited ‎02-21-2020 12:34 AM

Hi All,

A quick question about access-lists. I have a site-to-site link using two PIX 515's. I have a requirement at one end to make a PC-to-site connection to a completly different network. However the network I am trying to connect to is on the same internal address scheme as the site-to-site so the packets are not getting routed correctly. Systems are as follows :-

Site To Site link (Internal Addresses)

Far end - 192.0.0.0 (255.255.255.0)

Near End - 192.168.0.1-192.168.3.254 (255.255.252.0)

Site to PC Link (Internal Addresses)

My Site - 192.0.0.0 (255.255.255.0)

Remote Site - 192.168.225.0 (255.255.255.0)

Can any one advise the best way to mod my access-list which is shown below or advise as to another fix which will allow the traffic to flow to both sites.

access-list vpntraffic permit ip 192.0.0.0 255.255.255.0 192.168.0.0 255.255.252.0

Many Thanks In Advance

Jez

0 Helpful
1 Reply 1

mchin345
Level 6
Level 6

‎12-12-2005 07:31 AM

The access-list command operates on a first match basis. Therefore, the last rule added to the access list is the last rule checked. The administrator should make a note of the last rule during initial configuration, because it may impact the remainder of the rule parsing.

In this section, you are presented with the information to configure the firewall for access to a mail server located on the DMZ.

http://www.cisco.com/warp/public/110/mailserver_dmz.html

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card