?
Solved

open all port to host

Posted on 2006-11-15
4
Medium Priority
?
237 Views
Last Modified: 2010-04-10
hi
if i use static nat in my pix to refer to my PC 172.16.14.130 in VLAN 14 to public 62.68.65.50 and i want to open all port to this IP (62.68.65.50) what command i use

thanks
0
Comment
Question by:nasemabdullaa
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17948080
Hi Again, it is simple;

static(inside,outside) 62.68.65.50 172.16.14.130 netmask 255.255.255.255

This makes all port to be forwarded to the address, now what all traffic you want to allow can be done using the access-lists

access-list OutsideIn permit tcp any host 62.68.65.50 eq www (for web)
access-list OutsideIn permit tcp any host 62.68.65.50 eq 3389 (for rdp)

finally;

access-group OutsideIn in interface outside

Cheers,
Rajesh
0
 

Author Comment

by:nasemabdullaa
ID: 17948135
hi  rsivanandan
thanks for your reply
i want to open all port in one command access list
can i get command to open all port in one access list command
i mean i do not want to open port then open another port

thanks
0
 
LVL 32

Accepted Solution

by:
rsivanandan earned 1000 total points
ID: 17948219
Not suggested for security reasons, well if you want to go that way then;

access-list OutsideIn permit ip any host 62.68.65.50

access-list OutsideIn in interface outside

Cheers,
Rajesh
0
 

Author Comment

by:nasemabdullaa
ID: 17948262
hi  rsivanandan

thanks
0

Featured Post

Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
This article is a collection of issues that people face from time to time and possible solutions to those issues. I hope you enjoy reading it.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Suggested Courses

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question