topic Allow Web on upper level ports in Network Security

Allow Web on upper level ports

mloggins — Fri, 21 Feb 2020 06:30:00 GMT

I have a VPN setup and working (PIX to Contivity) to access a web-based application. The application does not use the traditional 80 or 8080 ports. It starts in the 7xxx range and can grow depending on connection number. The VPN is working, but I get blocked from using the web page on this upper level port. Is there are way to allow http traffic on these upper level ports?

Thanks for your help

Re: Allow Web on upper level ports

engel — Sat, 18 Jan 2003 13:49:33 GMT

How do you set your "crypto" access-list ?

I think it would be simply just to define several "crypto" access-lists on the PIX to match interesting traffic to be encrypted, with a destination of tcp 7xxx . How about the packet`s source , does it use upper level random ports also ?

Regards,

Engel

Re: Allow Web on upper level ports

mloggins — Mon, 20 Jan 2003 16:25:57 GMT

The crypto access-lists are set to allow all ip traffic from the ip address through, not specific ports. Can you specify a range of addresses in a single access-list ?