Solved

Adding new access list to Cisco ASA 5510

Posted on 2014-02-18
1
576 Views
Last Modified: 2014-03-15
I have a Cisco ASA 5510 which has existing access lists.  I need to add new access lists allowing traffic to 192.168.1.12 for port UDP 4500 and TCP 53.  How can I add these without affecting the other access lists?

I will need a detailed example.  Thanks
0
Comment
Question by:wayy2be
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 9

Accepted Solution

by:
ffleisma earned 500 total points
ID: 39869516
can you provide the following show commands for us to provide exact configuration to put in place

show run | inc access-group
show run | inc access_in
show ip

for the particular ACL you are adding, is this incoming to the inside interface?

assuming traffic is incoming to inside interface, you'll have to put in something like this:

access-list inside_access_in extended permit udp any host 192.168.1.12 eq 4500
access-list inside_access_in extended permit tcp any host 192.168.1.12 eq 53

if you can share your configuration we can help you out to something more specific to what you are trying to achieve. hope this helps!
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
In an interesting question (https://www.experts-exchange.com/questions/29008360/) here at Experts Exchange, a member asked how to split a single image into multiple images. The primary usage for this is to place many photographs on a flatbed scanner…

732 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question