Solved

Adding new access list to Cisco ASA 5510

Posted on 2014-02-18
1
570 Views
Last Modified: 2014-03-15
I have a Cisco ASA 5510 which has existing access lists.  I need to add new access lists allowing traffic to 192.168.1.12 for port UDP 4500 and TCP 53.  How can I add these without affecting the other access lists?

I will need a detailed example.  Thanks
0
Comment
Question by:wayy2be
1 Comment
 
LVL 9

Accepted Solution

by:
ffleisma earned 500 total points
ID: 39869516
can you provide the following show commands for us to provide exact configuration to put in place

show run | inc access-group
show run | inc access_in
show ip

for the particular ACL you are adding, is this incoming to the inside interface?

assuming traffic is incoming to inside interface, you'll have to put in something like this:

access-list inside_access_in extended permit udp any host 192.168.1.12 eq 4500
access-list inside_access_in extended permit tcp any host 192.168.1.12 eq 53

if you can share your configuration we can help you out to something more specific to what you are trying to achieve. hope this helps!
0

Featured Post

Now Available: Firebox Cloud for AWS and FireboxV

Firebox Cloud brings the protection of WatchGuard’s leading Firebox UTM appliances to public cloud environments. It enables organizations to extend their security perimeter to protect business-critical assets in Amazon Web Services (AWS).

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
ASA Deny No Connection PSH ACK, Traffic is dropped 10 90
RDP Sonicwall 8 98
What are acceptable WiFi signal strengths 6 73
TCP Reset from Server 3 25
I recently had the displeasure of buying a new firewall at one of the buildings I play Sys Admin at. I had to get a better firewall than the cheap one that I had there since I was reconnecting the main office to the satellite office via point-to-poi…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question