Solved

open all port to host

Posted on 2006-11-15
4
233 Views
Last Modified: 2010-04-10
hi
if i use static nat in my pix to refer to my PC 172.16.14.130 in VLAN 14 to public 62.68.65.50 and i want to open all port to this IP (62.68.65.50) what command i use

thanks
0
Comment
Question by:nasemabdullaa
  • 2
  • 2
4 Comments
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17948080
Hi Again, it is simple;

static(inside,outside) 62.68.65.50 172.16.14.130 netmask 255.255.255.255

This makes all port to be forwarded to the address, now what all traffic you want to allow can be done using the access-lists

access-list OutsideIn permit tcp any host 62.68.65.50 eq www (for web)
access-list OutsideIn permit tcp any host 62.68.65.50 eq 3389 (for rdp)

finally;

access-group OutsideIn in interface outside

Cheers,
Rajesh
0
 

Author Comment

by:nasemabdullaa
ID: 17948135
hi  rsivanandan
thanks for your reply
i want to open all port in one command access list
can i get command to open all port in one access list command
i mean i do not want to open port then open another port

thanks
0
 
LVL 32

Accepted Solution

by:
rsivanandan earned 250 total points
ID: 17948219
Not suggested for security reasons, well if you want to go that way then;

access-list OutsideIn permit ip any host 62.68.65.50

access-list OutsideIn in interface outside

Cheers,
Rajesh
0
 

Author Comment

by:nasemabdullaa
ID: 17948262
hi  rsivanandan

thanks
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question