Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi Does anyone have a solution for this problem?Background:We have two DMZ's with servers using public ip-address ranges. On our old linux-based firewall we use one of these public ip-addresses for portforwarding (different ports) to two different ho...
HiHow do I permit Instant Messaging on a 'locked' down interface, where I only normaly permit http, https ftp. I would like to permit MSN Messenger and AIM without having to open up to many ports. I suspect you have to configure inspection rules and ...
HiIs there any way you easily can specify a range of ip addresses from a subnet in an access-list in an ASA. I want to apply specific rules to dhcp-clients but I don't want the rule apply to the rest of the subnet. Something like this:Access-list Out...
Yes, that's the way I want it, preferably by using only one public ip for both ports but neither the Pix or the ASA will let me do that with ordanary static lines like that, it starts complaining about "WARNING: mapped-address conflict with existing ...
Hi The Alias command should do the trick, a static line should also work, I've used both.alias (inside) inside-ip-address outside-ip-address 255.255.255.255static (outside,inside) outside-ip-address inside-ip-address netmask 255.255.255.255Or you co...
Hi ChrisIf you haven't solved your problem yet.I had the same problems, it worked for me when putting the tftp server on a different subnet, cisco aip on 10.x.x.x and tftp server on 172.16.x.x for example and then have the gateway you specify in t...
Thanks for the reply, You make perfect sense but I'm not so keen on that solution either, in that case the object-group approach will have to do. As going the subnetting route would break the whole ip-planThe reason the problem arise is that I'm rep...
