I have a PIX 515 with three interfaces (inside, dmz, outside). On the outside interface, access-list 101 is applied to allow traffic from the internet to a few hosts on the dmz. On the DMZ, access-list 102 is applied to allow some DMZ hosts to communicate to inside hosts. Hosts on the DMZ also need to originate www and smtp sessions to the internet..so I have the following commands in access-list 102 to allow that....
access-list 102 permit tcp host x.x.x.x any eq www
access-list 102 permit tcp host x.x.x.x any eq smtp
My question is this, will these lines in access-list 102 (applied inbound to dmz) allow the dmz host to establish www or smtp session to an inside host that has an active entry in the translation table?
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...