Solved

Cisco PIX Router Config Question (ACL)

Posted on 2004-03-24
1
493 Views
Last Modified: 2013-11-29
Looking over my router config (actually put in place by the previous admin), and I'm trying to figure out the following :

access-list inbound permit tcp any host x.x.x.x eq 3389
access-list inbound permit tcp any host x.x.x.x eq 3389
access-list inbound permit tcp any host x.x.x.x eq 3389
- Each of these are different server address's

Correct me if I'm wrong, but isn't this allowing anyone access to those address's via terminal services?

Thank you
0
Comment
Question by:MrBean
1 Comment
 
LVL 79

Accepted Solution

by:
lrmoore earned 50 total points
Comment Utility
Only if there is a matching static that matches the host x.x.x.x with an inside system.
If there is a static, then yes, anyone out there with Terminal services client can connect, but the login credentials must still be supplied. The security is now dependent on the security of the terminal server itself.
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now