I've configured a basic pix firewall with two servers on DMZ (1 mail server and another public web server) .... i've configured some generic commands for managing access to/from the dmz to the internet ... just want to know that do i have to add any more specific commands besides these for accessing those two servers or is it all that i've configured below.
static (inside,out) out I.P inside I.P
access-list 1 permit tcp any any
access-list 1 permit udp any any
access-list 1 permit ip any any
access-group 1 in interface dmz
I know its not a good acl , but i have another acl that's very specific to the hosts that i'll be appying.. but with that above config, will I be able to access my mail and web servers fine ? coz i read somewhere that the by default inspect commands in pix sometimes can conflict with accessing mail servers, etc and we need to define extra commands .... ???