Solved

pix506e

Posted on 2003-10-29
3
244 Views
Last Modified: 2013-11-16
how to open ports in cisco pix 506e
0
Comment
Question by:nakka_sudhir
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 2

Accepted Solution

by:
Russky earned 50 total points
ID: 9641511
Hi Nakka,

Can only give you basic info given the amount I have to go on!

Pix 506, you will need 2 Access Lists - One for the External interface and one for the Internal Interface.

Unless you are running a webserver or other kind of service, the external access list should deny everything
The internal access list should only allow through the traffic you need, i.e. port 80 for Web Browsing, 442 for SSL Etc..

So, firstly you need to create your access lists:
***
access-list acl_out deny ip any any
access-list acl_int permit tcp host any any eq www
access-list acl_int permit udp host any any eq domain
***

Then you bind them to the required interface:
***
access-group acl_out in interface outside
access-group acl_int in interface inside
***

acl_out is bound to the outside interface and denys all incoming traffic
acl_int is bound to the inside interface and only allows traffic out on ports 80 and 53 - the basics needed for web browsing.

Provided the rest of the pix is set up correctly you will now be able to look at web pages.

Hope this helps,

Russky




0

Featured Post

Enroll in June's Course of the Month

June’s Course of the Month is now available! Experts Exchange’s Premium Members, Team Accounts, and Qualified Experts have access to a complimentary course each month as part of their membership—an extra way to sharpen your skills and increase training.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question