Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
373
Views
0
Helpful
1
Replies

access-list question

The_guroo_2
Level 2
Level 2

‎05-23-2012 04:46 AM

Gents

I have two servers in DmZ and many of my third parties connects to my server via sftp I have choosen port 778 .....and there are other ports which range from 3000-4013 now I have made an object group called dmz server and I have made a port object and has mentioned those ports .....there are 7 serves so that why inhave created object group in Asa

Now my access list is as under

Acces-list outin in permit ip any object-group frpservers object-serv log

The issue is that I can't ass eq sftp ....now I understand that firewall will allow only access to these ports but it will be open for any traffic fr

Example ping etc I really want to restrict to just sftp on specified ports

Thanks

Sent from Cisco Technical Support iPhone App

Labels:
0 Helpful
1 Reply 1

Jennifer Halim
Cisco Employee
Cisco Employee

‎05-23-2012 05:03 AM

Are you saying that you can't configure an access-list for the sftp port?

Can you please configure "eq 778" instead of "eq sftp"?

0 Helpful
Customers Also Viewed These Support Documents