Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
411
Views
0
Helpful
5
Replies

PIX behind Cisco 1841 - Need SSH access

Go to solution
molinek
Level 1
Level 1

‎04-24-2006 10:08 AM - edited ‎02-21-2020 12:51 AM

Hello, trying to allow SSH access to PIX for a few external clinets/hosts.

What are the correct Acl's I need?

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Fernando_Meza
Level 7
Level 7
In response to molinek

‎04-24-2006 02:21 PM

Exactly correct ..

1.- On the router you need to allow incoming TCP 22 (ssh) to your PIX on the outside interface of the router and also allow the return traffic from the PIX on the inside interface of the router.

2.- On the PIX you need to generate the rsa keys and save them.

ca generate rsa key 1024

ca save all

3.- On the pix you need to allow ssh acccess to te outside interface

ssh outside

Rate it if you find it helpful

View solution in original post

0 Helpful
5 Replies 5

Go to solution
sebastan_bach
Level 4
Level 4

‎04-24-2006 10:25 AM

hi there for ssh. all u need to do is generate the rsa keys. and ssh specify the ip address fo the hosts or their subnet and they will get access. u don't need to have any access-list cause u are connecting to the pix and not through the pix. hope this helps. pls rate if it does.

sebastan

0 Helpful

Go to solution
molinek
Level 1
Level 1
In response to sebastan_bach

‎04-24-2006 11:45 AM

How about Acl's on the 1841 router to access the PIX?

The Pix is behind the router and I want to gain access to it from the internet.

Yeah, the PIX won't need anything but how is going to connect via SSH Like:

SSH 12.152.XXX.XXX 255.255.255.255 OUTSIDE

0 Helpful

Go to solution
Fernando_Meza
Level 7
Level 7
In response to molinek

‎04-24-2006 02:21 PM

Exactly correct ..

1.- On the router you need to allow incoming TCP 22 (ssh) to your PIX on the outside interface of the router and also allow the return traffic from the PIX on the inside interface of the router.

2.- On the PIX you need to generate the rsa keys and save them.

ca generate rsa key 1024

ca save all

3.- On the pix you need to allow ssh acccess to te outside interface

ssh outside

Rate it if you find it helpful

0 Helpful

Go to solution
molinek
Level 1
Level 1
In response to Fernando_Meza

‎04-25-2006 06:12 AM

Could you please provide me some examples ofthe Acl's that I'll need on the 1841? Then I will rate it.

Thanks Fernando.

0 Helpful

Go to solution
sebastan_bach
Level 4
Level 4
In response to molinek

‎04-25-2006 08:20 AM

dude i guess people have helped u a lot out here . if u are not even clear to work with acls. then sorry we can't help u . and pls don't ask for favours just to get to rate them

sebastan

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card