Setting up FTP and RDP behind a pix

Posted on 2006-04-30
Last Modified: 2013-11-16
Hello everyone, I've gotten my pix 501 in the mail, and would like to setup an FTP site behind it, as well as all RDP to pass to my desktop.

I used the cisco device configurator thing and added some access rules
source - any
destination - my 192 local address
interface - outside
service - ftp

but I still can't connect!

Anyone know how to do port forwarding on these things?  command line would be great

Question by:terrymason
    LVL 9

    Accepted Solution

    Here's an example configuration to use the PIX outside IP address for port redirection allowing RDP and FTP:

    Just replace the 192.x.x.x with the actual IP address of the PC you want to be able to connect to.

    static (inside,outside) tcp interface 3389 192.x.x.x 3389 netmask
    static (inside,outside) tcp interface ftp 192.x.x.x ftp netmask
    static (inside,outside) tcp interface ftp-data 192.x.x.x ftp-data netmask

    access-list acl_out permit tcp any interface outside eq 3389
    access-list acl_out permit tcp any interface outside eq ftp
    access-list acl_out permit tcp any interface outside eq ftp-data
    access-group acl_out in interface outside
    LVL 20

    Assisted Solution

    Also be sure to run the following anytime you add/modify/remove any NAT entries (static or otherwise):
      clear xlate

    LVL 1

    Author Comment

    thanks guys, worked perfectly!


    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    How to improve team productivity

    Quip adds documents, spreadsheets, and tasklists to your Slack experience
    - Elevate ideas to Quip docs
    - Share Quip docs in Slack
    - Get notified of changes to your docs
    - Available on iOS/Android/Desktop/Web
    - Online/Offline

    This is about downgrading PIX Version 8.0(4) & ASDM 6.1(5) to PIX 7.2(4) and ASDM 5.2(4) but with only 64MB RAM and 16MB flash. Background: You have a Cisco Pix 515E which was running on PIX 7.2(4) and its supporting ASDM 5.2(4) without any i…
    Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
    This video discusses moving either the default database or any database to a new volume.
    This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

    758 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    10 Experts available now in Live!

    Get 1:1 Help Now