Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
627
Views
0
Helpful
5
Replies

Opening a port

jjozsa
Level 1
Level 1

‎10-21-2004 09:09 AM - edited ‎03-09-2019 09:10 AM

Ok I am kind of new to the PIX and know little about Cisco routers.

But what I want to do is open port 8044 to the incomging side.

How do I do this?

Thanks,

Labels:
0 Helpful
5 Replies 5

Patrick Iseli
Level 7
Level 7

‎10-21-2004 11:40 AM

Do you want to open this on aq PIX or IOS Firewall or a router?

Take a look at this link:

IOS Firewall:

http://www.cisco.com/pcgi-bin/Support/browse/psp_view.pl?p=Software:Cisco_IOS_Firewall&s=Implementation_and_Configuration

PIX Firewall:

Initial configuration (non VPN)

http://www.cisco.com/pcgi-bin/Support/browse/psp_view.pl?p=Hardware:PIX&s=Software_Configuration

PIX 500 Support page:

http://www.cisco.com/pcgi-bin/Support/browse/psp_view.pl?p=Hardware:PIX

sincerely

Patrick

PIX Fir

0 Helpful

jjozsa
Level 1
Level 1
In response to Patrick Iseli

‎10-21-2004 12:13 PM

Thank you for that post it will come in very handy when I have time to sit down and read it. However, I am kind of in a bind. I did not set up the firewall and dont really need to know the ins and outs of it.

I do not have port 8044 defined inside of the PIX 515E and would like to know how to open it so a vendor or ours can communitcate with some software we have.

I rarely have to do anything to the firewall, but this is one of those times. Is there a cliff note version of your answer I guess I am trying to say.

Thanks,

0 Helpful

jogillis
Level 1
Level 1

‎10-22-2004 12:56 PM

the line to add (in config mode) is

access-list xxxx permit pppp yyyy zzzz eq 8044

pppp is the protocol (tcp or udp)

xxxx is the access-list name on the outside interface

yyyy is the address of outside host

zzzz is the address of the inside host (it nat(ed)address)

If your access-list simple just add this line. If there is logic in your access-list you may have to add it at another location. Sorry for the confusion but as with much in DP, "it all depends" on your situation.

0 Helpful

jjozsa
Level 1
Level 1
In response to jogillis

‎10-26-2004 01:12 PM

it comes back and says yyyy,zzzz doesnt pair.

0 Helpful

bbaltas
Level 1
Level 1
In response to jjozsa

‎10-26-2004 04:43 PM

I'm going to make the assumption that you are going from your outside interface to your inside interface.

put in the following

static (inside, outside) oooo.oooo.oooo.oooo iiii.iiii.iiii.iiii netmask 255.255.255.255

oooo.oooo.oooo.oooo is the outside address of your firewall

iiii.iiii.iiii.iiii is the address of your server

next add the access-list command

access-list permit ppp host vvvv.vvvv.vvvv.vvvv host ssss.ssss.ssss.ssss eq nnnn

the name of your existing access list if one doesn't exist any name will do.

ppp - protocol (tcp or udp)

vvvv.vvvv.vvvv.vvvv ip address of the vendor's host

ssss.ssss.ssss.ssss ip address of your server

nnnn - port number you want to open

be sure to add this to your existing access list for your outside interface. If you don't have an access list applied to your outside interface, enter the following:

access-group in interface outside

0 Helpful
Customers Also Viewed These Support Documents