Cisco ASA access-rule


Quick question.

I am using a Cisco ASA 5520

I need to sort out an FTP location to allow 1 specific external IP address inside our network to connect to one specific FTP location. Only allowing the FTP protocal to get to our inside server.

The code i am going to enter will be:
access-list inside_access_in extended permit host (CustomerexternalIP) host (MYExternalIP) eq ftp

static (inside,outside) (MYExternalIP) (MYInteralIP)netmask

Have i got this correct, before i enter it

Many thanks

many thanks
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

RPPreacherConnect With a Mentor Commented:
access-list inside_access_in extended permit tcp host (CustomerexternalIP) host (MYExternalIP) eq ftp

otherwise all good.
zwart072Connect With a Mentor Commented:
you wrorte inside_access_in, is this the access-list which is bound to the outside interface? Normally you call the outside access-list outside_access_in. You have to make sure you edit the correct access-list!!
Check which access-list is applied to your outside interferace:
sh run access-group
>Check which access-list is applied to your outside interferace:

True.  I shouldn't have assumed that your named access list was already applied to the interface.
vconstantinouAuthor Commented:
Thank you i did make an error there it shoudld have been outside-access_in

all works

many thanks
All Courses

From novice to tech pro — start learning today.