Ok, heres my situation, i have my cisco 2600 set up to do the established link filtering on my wan port.
permit tcp any any established log
ok theres the acl fairly well, i am forwarding port tcp 22 to a server internally.
ip nat inside souce static tcp x.x.x.x 22 x.x.x.x 22 extendable.
My problem is..... that with the ACL, doing the established bit, forwarding this port to the server on tcp does absolutely nothing. i can forward udp all day long and it works like a champ. My question is.... How do i set port 22 in my ACL to ignore the
permit tcp any any established That i have at the end of my deny statements?
I have tried:
permit tcp host x.x.x.x eq 22 host x.x.x.x eq 22 log
Which is the same argument that lets my udp ports though with no problem, port and protocol are all that were changed.
Thanks in advance for any help.