Link to home
Create AccountLog in
Avatar of gobigmedia
gobigmedia

asked on

PIX 506 - Allow Access by IP Address

I have a PIX 506 firewall in front of a web and database server.  I would like to permit access to the SQL port on all hosts on the inside for a single IP Address and deny for all others.  How can i do this?
Avatar of myin68
myin68
Flag of United States of America image

Create an access rule to allow (SQL port) tcp xxx, or udp xxx coming from the network/ip address you want to allow.  It should look something like:
access-list outside_access_in permit tcp ppp host xxx.xxx.xxx.xxx any eq ppp
where ppp is the SQL port number(s).
You also need to make sure you add the access list to the external interface.
ASKER CERTIFIED SOLUTION
Avatar of ngravatt
ngravatt
Flag of United States of America image

Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
See answer