Solved

How to allow other ports from outside to inside?

Posted on 2010-09-06
4
564 Views
Last Modified: 2013-11-16
Hi,

I am trying zone based firewall on cisco 2811.

external interface is connected with ISP. A subnet with IP public  is routed to  Internal interface.
The firewall is activated. The traffic from inside to outside is OK.
I want to permit traffic from internet to a server (public IP) on some ports.
Thinking no need for nat rules in my situation, I made some ip-map ports and I added this to inspect rules , but without success.

May someone tell what rules I should see in this case.

thanks in advance









 
0
Comment
Question by:tansun
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 11

Accepted Solution

by:
Coast-IT earned 500 total points
ID: 33610205
Have you done your permit commands ?

Here is a good link with a quick overview ;

https://supportforums.cisco.com/thread/228977
0
 

Author Comment

by:tansun
ID: 33777612
I would say it was a good link to consider to refer, I tried to configure firewall from the beginning and it worked.
0
 

Author Closing Comment

by:tansun
ID: 33777632
good reference
0

Featured Post

2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question