Solved

open port 3389 on pix 525 firewall

Posted on 2006-11-10
7
407 Views
Last Modified: 2013-11-21
hi
i want to use remote desktop connection to my pc which is after pix 525 firewall and router2800 iam using static nat to refer to my pc
my public IP is 62.68.65.43 refer to static 172.16.110.2
i want to open the port 3389 in pix firewall but i do not know how i can do that
what command must i use in pix firewall  to open this port


thanks
0
Comment
Question by:nasemabdullaa
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
7 Comments
 
LVL 10

Accepted Solution

by:
srgilani earned 500 total points
ID: 17912729
Follow below commands.


static (inside,outside) 172.16.110.2  62.68.65.43
access-list inbound permit tcp any host 62.68.65.43 eq 3389
access-list inbound permit udp any host 62.68.65.43 eq 3389
access-group inbound in interface outside


0
 

Author Comment

by:nasemabdullaa
ID: 17912780
hi
thanks for your reply

 the last command  access-group inbound in interface outside must i put interface outside or my outside Ip

thanks
0
 
LVL 10

Expert Comment

by:srgilani
ID: 17912868
last command means access list inboud will be apply to all incoming traffic coming from interface outside.

0
Webinar June 1st - Attacking Ransomware  

The global cyberattack that corrupted hundreds of thousands of computer systems on May 12th had a face, name, & price tag that we’ve seen all too often in recent years: Ransomware. With the stakes – and costs – of a ransomware attack higher than ever, is your business prepared ?

 
LVL 32

Expert Comment

by:rsivanandan
ID: 17912876
It should've been the other way round and also I would make it specific so that in future if I want to forward some other ports to some other machines, I will use the same public IP (Conserve it)

static (inside,outside) tcp 62.68.65.43 3389 172.16.110.2 3389

access-list inbound permit tcp any host 62.68.65.43 eq 3389

access-group inbound in interface outside

This is assuming that the public ip is free and is not assigned to the Outside interface.

Cheers,
Rajesh
0
 

Author Comment

by:nasemabdullaa
ID: 17912891
hi
thanks for your reply
my public ip is refer to only 172.16.110.2
and the other pblic ip (62.68.65.2 to 62.68.65.42) is use to nat in my network

thanks
0
 
LVL 10

Expert Comment

by:srgilani
ID: 17912933
then use what i advice :)

0
 

Author Comment

by:nasemabdullaa
ID: 17912959
hi
thanks for all
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

710 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question