Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
536
Views
0
Helpful
1
Replies

Opening a port

jschoendienst
Level 1
Level 1

‎03-12-2011 05:52 AM - edited ‎03-11-2019 01:05 PM

I am trying to open port 52199 on my ASA 5505

I have gone to firewall, access rules and then add tcpip.

Not sure if that is the correct place but cannot get it to work

Thanks

Labels:
0 Helpful
1 Reply 1

Federico Coto Fajardo
VIP Alumni
VIP Alumni

‎03-12-2011 08:55 AM

Hi,

To open a port on the Firewall (assuming that for inbound traffic) you need two things:

1. The ACL allowing the traffic

2. A static NAT to allow the service to be reachable from the outside world

So, using the CLI you can do this:

sh run access-group --> to check which ACL is applied to the outside interface (in the inbound direction)

sh run access-list --> to check the statements in that ACL

access-list permit tcp any host x.x.x.x eq 52199

The above command allows TCP port 52199 from any outside source to internal x.x.x.x (static NAT IP for the internal host).

To check that is working just fo ''sh access-list'' and see if the above line is getting hitcounts.

Hope it helps.


Federico.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card