Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ACL to allow PC anywhere connection

Hi,

I am facing problem with pcanywhere connection through my PIX firewall.

I have an access-list which says : access-list permit ip any any

the pcanywhere works fine with this.

now In place of "permit IP any any" , i want to allow ports 5631 and 5632 only which are used by PCanywhere.

I have tried putting an extended access list specifically permitting port number 5631 abd 5632, but the PC anywhere doesnt seem to work.

Does anybody has any idea how to make it work ?

Thanks in advance.

kanwal

7 REPLIES
New Member

Re: ACL to allow PC anywhere connection

pcAnywhere uses tcp ports 5631 and 5632. It also uses udp ports 5631 and 5632. You probably need to create an access-list that opens all four ports.

Josh

New Member

Re: ACL to allow PC anywhere connection

I'm sorry. I was wrong about the ports. It should be tcp port 5631 and udp port 5632.

Josh

New Member

Re: ACL to allow PC anywhere connection

Thanks for reply Josh.

I already have tried an access list allowing tcp port 5631 and udp 5632 but pcanywhere doesnt seem to work.

it works fine only with " Permit IP any any " but i dont want to use " permit IP any any "

Any other ideas ?

Thanks

kanwal

New Member

Re: ACL to allow PC anywhere connection

What version of pcAnywhere?

New Member

Re: ACL to allow PC anywhere connection

It is Version 3.0 (6).

Thanks

kanwal

New Member

Re: ACL to allow PC anywhere connection

I believe some of the older versions of pcAnywhere uses tcp port 65301 and udp port 22.

Josh

New Member

Re: ACL to allow PC anywhere connection

I just did this the other day.

Are you trying to access a pc from the outside(ie.at home)

If so you need to create a static (inside,outside) [legal ip address] [pc that has pc anywhere on it address] netmask 255.255.255.255 0 0

and than creat an accesslist with the legal address and the ports that you want open

access-list pcanywhere permit tcp any host 204.x.x.x eq pcanywhere-data

access-list pcanywhere permit tcp any host 204.x.x.x eq 5632

static (inside,outside) 204.x.x.x10.0.50.4 netmask 255.255.255.255 0 0

326
Views
0
Helpful
7
Replies