Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
178
Views
0
Helpful
1
Replies

Open multiple port to DMZ

daok
Level 1
Level 1

‎04-13-2003 11:45 PM - edited ‎03-09-2019 02:53 AM

How do I open for ports 1023 and above from the inside server (192.168.1.1) to the DMZ Server (192.168.2.1). And the other way for port 7205.

I have a pix 515

Best Regards

Ole Kyrstein

Labels:
0 Helpful
1 Reply 1

gfullage
Cisco Employee
Cisco Employee

‎04-14-2003 02:23 PM

For traffic from inside -> dmz you don't need to specifically open ports, the traffic will be allowed by default. All you need is some sort of translation, either a nat/global pair or a static.

For traffic from dmz -> inside, you need a static and an ACL. The ACL would look something like:

> access-list dmzin permit tcp any host eq 7205

> access-group dmzin in interface dmz

0 Helpful
Customers Also Viewed These Support Documents