Velocity Reviews

Velocity Reviews (http://www.velocityreviews.com/forums/index.php)
-   Cisco (http://www.velocityreviews.com/forums/f27-cisco.html)
-   -   walter , did I do this right ? (http://www.velocityreviews.com/forums/t40041-walter-did-i-do-this-right.html)

Barret Bonden 07-13-2005 08:44 PM

walter , did I do this right ?
 
access-list outside_access_in permit tcp any interface outside range 3060
3064

static (inside,outside) udp interface 3061 192.168.0.122 3061 netmask
255.255.25
5.255 0 0
static (inside,outside) udp interface 3060 192.168.0.122 3060 netmask
255.255.25
5.255 0 0
static (inside,outside) udp interface 3062 192.168.0.122 3062 netmask
255.255.25
5.255 0 0
static (inside,outside) udp interface 3063 192.168.0.122 3063 netmask
255.255.25
5.255 0 0
static (inside,outside) udp interface 3064 192.168.0.122 3064 netmask
255.255.25
5.255 0 0


It works - but I always wonder ....



Walter Roberson 07-13-2005 09:10 PM

Re: walter , did I do this right ?
 
In article <GIadnfdqt9K34EjfRVn-qw@conversent.net>,
Barret Bonden <support@networks-cc.com> wrote:
:access-list outside_access_in permit tcp any interface outside range 3060 3064

:static (inside,outside) udp interface 3061 192.168.0.122 3061 netmask 255.255.255.255 0 0
:static (inside,outside) udp interface 3060 192.168.0.122 3060 netmask 255.255.255.255 0 0

:It works - but I always wonder ....

I was about to say, "Looks okay to me, as long as there is an

access-group outside_access_in in interface outside
"

but then I noticed a problem.

Your ACL entry permits tcp, but your static's are for udp.
--
"No one has the right to destroy another person's belief by
demanding empirical evidence." -- Ann Landers


All times are GMT. The time now is 05:35 AM.

Powered by vBulletin®. Copyright ©2000 - 2014, vBulletin Solutions, Inc.
SEO by vBSEO ©2010, Crawlability, Inc.