Solved

open all port to host

Posted on 2006-11-15
4
236 Views
Last Modified: 2010-04-10
hi
if i use static nat in my pix to refer to my PC 172.16.14.130 in VLAN 14 to public 62.68.65.50 and i want to open all port to this IP (62.68.65.50) what command i use

thanks
0
Comment
Question by:nasemabdullaa
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17948080
Hi Again, it is simple;

static(inside,outside) 62.68.65.50 172.16.14.130 netmask 255.255.255.255

This makes all port to be forwarded to the address, now what all traffic you want to allow can be done using the access-lists

access-list OutsideIn permit tcp any host 62.68.65.50 eq www (for web)
access-list OutsideIn permit tcp any host 62.68.65.50 eq 3389 (for rdp)

finally;

access-group OutsideIn in interface outside

Cheers,
Rajesh
0
 

Author Comment

by:nasemabdullaa
ID: 17948135
hi  rsivanandan
thanks for your reply
i want to open all port in one command access list
can i get command to open all port in one access list command
i mean i do not want to open port then open another port

thanks
0
 
LVL 32

Accepted Solution

by:
rsivanandan earned 250 total points
ID: 17948219
Not suggested for security reasons, well if you want to go that way then;

access-list OutsideIn permit ip any host 62.68.65.50

access-list OutsideIn in interface outside

Cheers,
Rajesh
0
 

Author Comment

by:nasemabdullaa
ID: 17948262
hi  rsivanandan

thanks
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…

724 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question