topic Re: dynamic ACL's needed in Network Security

dynamic ACL's needed

ehuarte — Mon, 11 Mar 2019 11:28:31 GMT

Hi;

I have two aplications that need to be accessed fist to sqlnet port 1521 and then it gives the client a port over 1024.

The thing is that it doesn't work if I try to do this access dinamically because I have a rule that accept >1024 and not only the 1521 port.

It's like the FTP dynamic port, it doesn't work.

How I do it to work in a ASA 5520?

Thanks. Regards

irisrios — Fri, 26 Oct 2007 13:21:19 GMT

Make sure the source and destination ports are correctly applied to the interface in the specific direction.

Rafiki-TLK — Sun, 28 Oct 2007 10:52:18 GMT

All you need to do is open port 1521 and inspect sqlnet.

Please see details for the inspect sqlnet command.

This will make ASA/PIX track the changes in the connection starting at port 1521 and changing to what ever port Oracle DB chooses.

Regards Rafiki-TLK