I am trying to set up an access list that permits a stated IP through the ASA to a stated IP (UNIX server on the internal DMZ network.
here is what I am using
access-list acl_outside extended permit ip xx.xx.xx.62 255.255.255.255 xx.xx.xx.40 255.255.255.224
(the first IP is the one i want to let through the second is the desitination...
Something is wrong however, as I am getting error that it does not pair.? I have checked the subnets and pretty sure they are right.
in order to allow the desktop client program to connect to the server I have added the following
access-list acl_outside extended permit ip anyhost xx.xx.xx.40
This I know is unsecure and bad practice so keen to lock it down.
Thanks in advance