?
Solved

How to open port 992 for SSL on pix 506e firewall

Posted on 2006-06-06
6
Medium Priority
?
1,750 Views
Last Modified: 2013-11-16
I need to open port 992 on our Pix 506e firewall to allow SSL connections to our server. I'm a novice at PIX can anyone help me.
0
Comment
Question by:Djrobluv
  • 3
  • 3
6 Comments
 
LVL 9

Accepted Solution

by:
carribeantech earned 2000 total points
ID: 16843433
Hi,

Please try the following:

static (inside,outside) <public_ip> <private_ip>
access-list 101 permit tcp any host <public_ip> eq 992
access-group 101 in interface outside

If you only have one public ip address available try the following:

static (inside,outside) tcp  <public_ip>  992 <private_ip> 992 netmask 255.255.255.255
access-list 101 permit tcp any host <public_ip> eq 992
access-group 101 in interface outside
write mem

Hope this helps!
0
 

Author Comment

by:Djrobluv
ID: 16843689
Hi

Is it possible you can type out step by step as if you was typing it in on the command line yourself. I'm using Hyper Terminal.
0
 

Author Comment

by:Djrobluv
ID: 16843693
And its only 1 public IP
0
Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

 
LVL 9

Expert Comment

by:carribeantech
ID: 16843922
pixfirewall> enable
pass:
pixfirewall# config terminal
pixfirewall(config)# static (inside,outside) tcp  <public_ip>  992 <private_ip> 992 netmask 255.255.255.255
pixfirewall(config)# access-list 101 permit tcp any host <public_ip> eq 992
pixfirewall(config)# access-group 101 in interface outside
pixfirewall(config)# write mem

Please verify that you don't have any access-group applied to the outside interface, if you do, please name the access-list with that same name.

Also it will be easier if you upload your current configuration, please mask important information such as ip addresses.

Cheers!
0
 

Author Comment

by:Djrobluv
ID: 16844276
Thanks that worked. I already had a Static (inside,outside) line. That's what was confusing me. I entered the access-list 101 & access-group lines and it works.
0
 
LVL 9

Expert Comment

by:carribeantech
ID: 16844478
Cool!

Take care and have a nice day!

Cheers,

carribeantech
0

Featured Post

A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
In this article, the configuration steps in Zabbix to monitor devices via SNMP will be discussed with some real examples on Cisco Router/Switch, Catalyst Switch, NAS Synology device.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses

807 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question