Solved

Cisco PIX 515E forwarding rule HELP !

Posted on 2011-02-10
8
508 Views
Last Modified: 2012-05-11
Hi Experts,

My Device:
Cisco PIX515E
PIX Version: 8.0(4)

I just need to know the possibility of following and example rule if it's possible.

I have below rule already placed in my PIX and I need to add additional rule for the same public IP

2x2.x.5x.55 port 4000 to 192.168.4.10 port 4000

Please advise and thanks a lot for your time !
#######What is have in my access list currently#######

access-list 110 extended permit tcp any host 2x2.x.5x.55 eq www
static (inside,outside) tcp 2x2.x.5x.55 www 192.168.4.8 4000 netmask 255.255.255.255
########################################################

Open in new window

0
Comment
Question by:Shakthi777
  • 4
  • 4
8 Comments
 
LVL 34

Expert Comment

by:Istvan Kalmar
ID: 34868460
Hi,

This rule is good, go ahead!

Best regards,
Istvan
0
 

Author Comment

by:Shakthi777
ID: 34868468
Actually I need to place the second rule for 2x2.x.5x.55 port 4000 to 192.168.4.10 port 4000

How can I do that ?
0
 
LVL 34

Expert Comment

by:Istvan Kalmar
ID: 34868512
please show the comnfig
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Author Comment

by:Shakthi777
ID: 34868601
sry my mistake !

#######What is have in my access list currently#######
access-list 110 extended permit tcp any host 2x2.x.5x.55 eq www
static (inside,outside) tcp 2x2.x.5x.55 www 192.168.4.8 4000 netmask 255.255.255.255
########################################################

#######Second rule I need to place for the same public IP#######
Traffic from 2x2.x.5x.55 port 8080 to 192.168.4.10 port 8080
########################################################

Open in new window

0
 
LVL 34

Expert Comment

by:Istvan Kalmar
ID: 34868609
ok you need:


access-list 110 extended permit tcp any host 2x2.x.5x.55 eq 8080
static (inside,outside) tcp 2x2.x.5x.55 www 192.168.4.8 4000 netmask 255.255.255.255
clear xlate
0
 
LVL 34

Accepted Solution

by:
Istvan Kalmar earned 500 total points
ID: 34868611
sorry this need:

access-list 110 extended permit tcp any host 2x2.x.5x.55 eq 8080
static (inside,outside) tcp 2x2.x.5x.55 8080 192.168.4.10 8080 netmask 255.255.255.255
clear xlate
0
 

Author Comment

by:Shakthi777
ID: 34868631
thanks a lot ikalmar, let me chk and confirm !

btw both rules should function well with the same public IP !
0
 

Author Closing Comment

by:Shakthi777
ID: 34904046
worked well !
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article assumes you have at least one Cisco ASA or PIX configured with working internet and a non-dynamic, public, address on the outside interface. If you need instructions on how to enable your device for internet, or basic configuration info…
Have you experienced traffic destined through a Cisco ASA firewall disappears and you do not know if the traffic stops in the firewall or somewhere else? The solution is the capture feature. This feature was released in 6.2(1) and works in all firew…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question