?
Solved

Cisco PIX Router Config Question (ACL)

Posted on 2004-03-24
1
Medium Priority
?
530 Views
Last Modified: 2013-11-29
Looking over my router config (actually put in place by the previous admin), and I'm trying to figure out the following :

access-list inbound permit tcp any host x.x.x.x eq 3389
access-list inbound permit tcp any host x.x.x.x eq 3389
access-list inbound permit tcp any host x.x.x.x eq 3389
- Each of these are different server address's

Correct me if I'm wrong, but isn't this allowing anyone access to those address's via terminal services?

Thank you
0
Comment
Question by:MrBean
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 79

Accepted Solution

by:
lrmoore earned 200 total points
ID: 10672162
Only if there is a matching static that matches the host x.x.x.x with an inside system.
If there is a static, then yes, anyone out there with Terminal services client can connect, but the login credentials must still be supplied. The security is now dependent on the security of the terminal server itself.
0

Featured Post

Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Suggested Courses
Course of the Month11 days, 21 hours left to enroll

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question