topic Re: PIX 7.1(2) Access-list not working in Network Security

PIX 7.1(2) Access-list not working

damrut5763 — Tue, 26 Mar 2019 00:36:48 GMT

Hello,

can someone help me I'm running 7.1(2) on PIX 515E UR and my access-list is denying port 8888 eventhough I have it open up is there a bug in the software for that port. Here is the access-list

access-list dmz_access_in extended permit tcp host ADP-1 object-group TIMECLOCKS eq 8888

I have other ports open for this connection and they work!

Re: PIX 7.1(2) Access-list not working

Patrick Iseli — Mon, 20 Nov 2006 22:00:56 GMT

Can you post the whole ACL and the error log message. Just this line itself will not help to figure out the problem.

sincerely

Patrick

Re: PIX 7.1(2) Access-list not working

dflick — Wed, 22 Nov 2006 20:31:34 GMT

I am assuming the following:

host ADP-1 is in your DMZ.

you can do "ping dmz ADP-1" and get a reply

TIMECLOCKS are on the inside.

you can do "ping inside " and get a reply

If the above is true, do you have a static that allows TIMECLOCKS to be seen in the DMZ?

Can you do a netstat -a on the ADP-1 server to see if it is listening on port 8888.

You are probably getting a "deny no connection" or a "no translation"