Solved

How to set up access rules for the destination with a DHCP-assigned private address?

Posted on 2013-06-25
4
412 Views
Last Modified: 2013-06-26
My company is going to set up an on-line direct check deposit to our bank. The bank sent us the following notice:
----------
In order to successfully connect to the Bank website, your company‘s firewall must allow
the following IP address and port numbers to be accessible.  Depending on your company‘s internet firewall settings, it may require some configuration changes.
IP address: 216.82.178.59  (the bank's IP address)
Port Numbers:  80 & 443
----------

We have a Cisco ASA 5510. Do you think it is necessary for us to set up ACL for the above purpose since the connection will be initiated by our Accounting user inside our LAN?
If yes, since our Accounting pc doesn't have a public IP address then how to set up ACL for the destination with a private DHCP-assigned address?
0
Comment
Question by:Castlewood
4 Comments
 
LVL 28

Accepted Solution

by:
Jan Springer earned 200 total points
ID: 39276365
If the connection is originating from the inside to the outside and you do not have an access-list restricting the inside interface, then you shouldn't have to do anything.

Your accounting server should be allowed to NAT out the outside interface.
0
 
LVL 6

Assisted Solution

by:gcl_hk
gcl_hk earned 200 total points
ID: 39276883
If your Accounting PC is able to access any webpage by http and https currently, then no change require...
0
 
LVL 16

Assisted Solution

by:vivigatt
vivigatt earned 100 total points
ID: 39277878
TCP ports 80 and 443 are http and https, usually not filtered at all.
Thus if the IP address 216.82.178.59 is accessible from the desired client via http://216.82.178.59 and https://216.82.178.59 , nothing needs to be done.

Assigning firewall configs/rules by DHCP is not standard and I don't know any firewall that uses this mechanism, so it is very unlikely that this would be possible (and it would be very problematic on a security standpoint).
0
 

Author Closing Comment

by:Castlewood
ID: 39278165
Thank you guys so much.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco Access point 6 90
using BGP Attributes 2 89
Help with a subnetting question 7 49
Cisco ISE or Windows NPS for RADIUS and 802.1x 2 23
I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
This past year has been one of great growth and performance for OnPage. We have added many features and integrations to the product, making 2016 an awesome year. We see these steps forward as the basis for future growth.
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question