gordonmann
asked on
PIX 525 now allowing access line deletion
I am on a pix firewall 525 IOS PIX Version 6.3(4). I am trying to
1) remove this line "access-list PERMIT_OUTWARD deny udp any any" by typing this command "no access-list PERMIT_OUTWARD deny udp any any" in config mode. The system keeps returning me to a help screen and says "INVALID PROTOCOL UPD"
What am i missing
How would I then ALLOW out bound udp traffic thru port 500 and deny the balance. I am going to give this access listline numbers 170.
1) remove this line "access-list PERMIT_OUTWARD deny udp any any" by typing this command "no access-list PERMIT_OUTWARD deny udp any any" in config mode. The system keeps returning me to a help screen and says "INVALID PROTOCOL UPD"
What am i missing
How would I then ALLOW out bound udp traffic thru port 500 and deny the balance. I am going to give this access listline numbers 170.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
In what way do you need IPSEC enabled?
ASKER
VPn with shared key to connect via a software client.
ASKER
Here is the IPSEC info given to me
IPSEC Gateway IP: 209.155.91.20
Group Name: Clt96
Pre Shared key: A5+A5=a10#clt96#site
Encryption: 3DES
Authentication: SHA
DH Group: 2
Any help would be appreciated as I recently inherited this responsibility with 0 training.
IPSEC Gateway IP: 209.155.91.20
Group Name: Clt96
Pre Shared key: A5+A5=a10#clt96#site
Encryption: 3DES
Authentication: SHA
DH Group: 2
Any help would be appreciated as I recently inherited this responsibility with 0 training.
ok. Can you post your current configuration.
I will also need to IP address range used at the other site you are connecting to.
I will also need to IP address range used at the other site you are connecting to.
ASKER