Firewall Wizards mailing list archives

Re: Noob stuck becomes PIX admin overnight!

From: "Julian M D" <julianmd () gmail com>
Date: Thu, 22 Jun 2006 20:37:48 -0400

Hi,

You better make sure you use the same access-list name in case you
have one for the DMZ.

If you are still confused a bit, just sanitize and paste your config here!

Cheers,


On 6/22/06, Glock, Neil <Neil.Glock () vita virginia gov> wrote:


I have a PIX 515E v6.3(3) and am running PDM v3.0(1)


The PDM can cause problems so we don't use it.

I need to allow a device (IP 192.168.100.2) on the DMZ
interface to connect to a device (IP 192.168.10.1) on the
inside interface over a range of ports (14441 - 14450).


access-list <name-of-access-list-DMZ> permit tcp host 192.168.100.2 host
192.168.10.1 range 14441 14450
access-group <name-of-access-list-DMZ> in interface
<name-of-DMZ-interface>

Replace the names between "<" and ">" with names that apply to your
configuration.  You may already have an access-group statement for your
DMZ interface but that is what applies it to the interface!

I have the skills to modify my current config using the
terminal, I can remove and modify, but I don't have the
skills to create yet. Could anyone configure the lines that I
could use to allow this?


Good luck!
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Noob stuck becomes PIX admin overnight! Chris Bonthron (Jun 22)
- <Possible follow-ups>
- Re: Noob stuck becomes PIX admin overnight! Horvath, Kevin M. (Jun 22)
- Re: Noob stuck becomes PIX admin overnight! Glock, Neil (Jun 22)
  - Re: Noob stuck becomes PIX admin overnight! Julian M D (Jun 23)