Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
309
Views
3
Helpful
1
Replies

Access-list question

h-kholghi
Level 1
Level 1

‎06-16-2008 06:10 AM - edited ‎03-11-2019 05:59 AM

Hello,

We have a PIX 506 firewall and I need to allow a specific IP address, 141.157.129.77 to access a server inside the LAN on port #1999. I created a public IP address for the server but I am not so sure if the following command is correct.

access-list 101 permit tcp host 141.157.129.77 host “public ip address of our server” eq 1999

Thank you

Labels:
0 Helpful
1 Reply 1

dgroscost
Level 4
Level 4

‎06-16-2008 06:26 AM

Yes, that's correct.

You will need to apply the ACL to your outside interface -

access-group 101 in interface outside (as example)

Depending on your config, you may need to assign a static NAT to your server.

static (inside,outside) public.ip.address internal.ip.address netmask 255.255.255.255

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card