[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 410
  • Last Modified:

SSH PIX

I am trying to configure one pix version 6.3 and 7.2 to use putty and SSH login to the pix from inside the LAN from only 3 LAN ip addresses all other IP's would not be allowed login. if needed i will can provide more info. looking for the correct commands.
0
jeffsteffy
Asked:
jeffsteffy
  • 3
1 Solution
 
jfer0x01Commented:
Hi,
make a  acl 101 deny tcp 0.0.0.0 255.255.255.255 your.sshd.ser.ver 0.0.0.0  eq 22

and a

acl 101 permit tcp 10.10.1.1-3 255.255.255.0 your.sshd.ser.ver 0.0.0.0 eq 22

where the 10.10.1.1-3 is the range of ips you want to allow, if not a range, enumerate them one by one

Jfer
0
 
jeffsteffyAuthor Commented:
What does this part do? your.sshd.ser.ver 0.0.0.0
0
 
jfer0x01Commented:
the ip of the ssh device you are going into, and the subnet
0
 
jfer0x01Commented:
actually,

just try access-list 101 permit tcp 10.10.1.1-3 255.255.255.0 your.sshd.ser.ver 0.0.0.255 eq 22

the last set of numbers before the 22 is the wildcard bit for the subnet

Jfer
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now