Solved

Adding new access list to Cisco ASA 5510

Posted on 2014-02-18
1
553 Views
Last Modified: 2014-03-15
I have a Cisco ASA 5510 which has existing access lists.  I need to add new access lists allowing traffic to 192.168.1.12 for port UDP 4500 and TCP 53.  How can I add these without affecting the other access lists?

I will need a detailed example.  Thanks
0
Comment
Question by:wayy2be
1 Comment
 
LVL 9

Accepted Solution

by:
ffleisma earned 500 total points
ID: 39869516
can you provide the following show commands for us to provide exact configuration to put in place

show run | inc access-group
show run | inc access_in
show ip

for the particular ACL you are adding, is this incoming to the inside interface?

assuming traffic is incoming to inside interface, you'll have to put in something like this:

access-list inside_access_in extended permit udp any host 192.168.1.12 eq 4500
access-list inside_access_in extended permit tcp any host 192.168.1.12 eq 53

if you can share your configuration we can help you out to something more specific to what you are trying to achieve. hope this helps!
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco USB Device Setup 8 66
firewall inside of network 9 73
Netgear Prosafe client- server  PPTP VPN connects, but cannot ping or see files 22 31
Firewall port opening 2 57
Optimal Xbox 360 connectivity requires "OPEN NAT". If you use Juniper Netscreen or SSG firewall products in a home setting, the following steps will allow you get rid of the dreaded warning screen below and achieve the best online gaming environment…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now