Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

pix/pat and mapping range of ports

What is the command to map a range of ports to a certain inside address? i.e. ports 2000-2010

what would be the access list command for those same ports?

I know these commands for port 21

static (inside,outside) tcp <outside IP> 21 <inside IP> 21 netmask 255.255.255.255

access-list inbound permit tcp any host <outside IP> eq 21

The passive FTP server also requires a range of ports to have a static route to the internal PC.

Please advise.

Thanks.

  • Other Security Subjects
3 REPLIES
Cisco Employee

Re: pix/pat and mapping range of ports

Hi,

I dont think any command available yet to define the range of ports for static. but for access-list we do have it

access-list inbound permit tcp any host range 2100-2200

or something like that

Thanks

Nadeem

New Member

Re: pix/pat and mapping range of ports

If there is no command to define a range of ports do I have to do it one by one?

Cisco Employee

Re: pix/pat and mapping range of ports

Hi,

Yes, ofcourse, you have to define each port mapping one by one.

Thanks

Nadeem

101
Views
5
Helpful
3
Replies
This widget could not be displayed.