RE: Pix Firewall 515 access-list [7:86346] posted 03/25/2004
- Subject: RE: Pix Firewall 515 access-list [7:86346]
- From: "Andrew Larkins" <Andrew.Larkins@xxxxxxxxxxxxx>
- Date: Thu, 25 Mar 2004 09:56:08 GMT
You should see in the logs if the traffic is coming from other ports - it
should be denied - syslog message 106023
From: Peri Sophos [mailto:theperiman@xxxxxxxxxxx]
Sent: 25 March 2004 11:52 AM
To: Andrew.Larkins@xxxxxxxxxxxxx; cisco@xxxxxxxxxxxxxx
Subject: RE: Pix Firewall 515 access-list [7:86346]
That's exactly what I did , but have seen no matches , Thanks though , I
will speek to the developers and make sure they are doing something to the
servers , so I can see if it is working or not , but thanks for the reply.
>From: Andrew Larkins
>To: Peri Sophos , cisco@xxxxxxxxxxxxxx
>Subject: RE: Pix Firewall 515 access-list [7:86346]
>Date: Thu, 25 Mar 2004 11:49:40 +0200
>access-list acl_dmz permit udp 22.214.171.124 255.255.255.0 126.96.36.199
>255.255.255.0 eq 88
> access-group acl_dmz in interface dmz
>As an example.......
>From: Peri Sophos [mailto:theperiman@xxxxxxxxxxx]
>Sent: 25 March 2004 11:40 AM
>Subject: Pix Firewall 515 access-list [7:86346]
>I wonder if you could help me with an access-list , I don't have much
>experience on Cisco PIX firewalls , I have been asked to create an
>access-list to allow all my servers in the DMZ on address range (
>) to talk to my active directory servers on address range (188.8.131.52) ,
>but must communicate with them on UDP port 88 which is the kerberos
>I have tried a few commands but don't seem to work , perhaps someone
>can guide me in the correct direction, this would be much appreciated.
>Find search terms fast with Keyword Highlight and Highlight Viewer!
>**Please support GroupStudy by purchasing from the GroupStudy Store:
>FAQ, list archives, and subscription info:
Find Super 12 and other sports results on MSN Search!
Message Posted at:
**Please support GroupStudy by purchasing from the GroupStudy Store:
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html