Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Cisco > PIX 506 forwarding telnet port to home lab

Reply
Thread Tools

PIX 506 forwarding telnet port to home lab

 
 
boxers999
Guest
Posts: n/a
 
      04-25-2007
I have been lucky enough to have been given a Pix 506. Im trying to
open the telnet port (from any external IP) to allow access to my home
lab. Im only on my CCNA 2 at the moment and just starting on ACL's. I
think the problem is the static route's netmask which wont accept
255.255.255.0.

Any pointers would be great !

This is what I have on the pix at the moment:-

My 2511 router is on 192.168.1.111 !

access-list 101 permit tcp any host 192.168.1.111 eq telnet
pager lines 24
mtu outside 1500
mtu inside 1500
ip address outside pppoe setroute
ip address inside 192.168.1.3 255.255.255.0
ip audit info action alarm
ip audit attack action alarm
pdm logging informational 100
pdm history enable
arp timeout 14400
global (outside) 1 interface
nat (inside) 1 0.0.0.0 0.0.0.0 0 0
static (inside,outside) tcp 0.0.0.0 telnet 192.168.1.111 telnet
netmask 255.255.255.255 0 0
access-group 101 in interface outside

 
Reply With Quote
 
 
 
 
Jyri Korhonen
Guest
Posts: n/a
 
      04-25-2007
"boxers999" <(E-Mail Removed)> wrote:

>I have been lucky enough to have been given a Pix 506. Im trying to
> open the telnet port (from any external IP) to allow access to my home
> lab. Im only on my CCNA 2 at the moment and just starting on ACL's. I
> think the problem is the static route's netmask which wont accept
> 255.255.255.0.
>
> Any pointers would be great !
>
> This is what I have on the pix at the moment:-
>
> My 2511 router is on 192.168.1.111 !
>
> access-list 101 permit tcp any host 192.168.1.111 eq telnet
> pager lines 24
> mtu outside 1500
> mtu inside 1500
> ip address outside pppoe setroute
> ip address inside 192.168.1.3 255.255.255.0
> ip audit info action alarm
> ip audit attack action alarm
> pdm logging informational 100
> pdm history enable
> arp timeout 14400
> global (outside) 1 interface
> nat (inside) 1 0.0.0.0 0.0.0.0 0 0
> static (inside,outside) tcp 0.0.0.0 telnet 192.168.1.111 telnet
> netmask 255.255.255.255 0 0
> access-group 101 in interface outside


access-list 101 permit tcp any interface outside eq telnet

http://www.cisco.com/univercd/cc/td/....htm#wp1067755

static (inside,outside) tcp interface telnet 192.168.1.111 telnet

http://www.cisco.com/univercd/cc/td/....htm#wp1026694

 
Reply With Quote
 
 
 
 
boxers999
Guest
Posts: n/a
 
      04-26-2007


On 25 Apr, 10:40, "Jyri Korhonen" <(E-Mail Removed)>
wrote:
> "boxers999" <(E-Mail Removed)> wrote:
> >I have been lucky enough to have been given a Pix 506. Im trying to
> > open the telnet port (from any external IP) to allow access to my home
> > lab. Im only on my CCNA 2 at the moment and just starting on ACL's. I
> > think the problem is the static route's netmask which wont accept
> > 255.255.255.0.

>
> > Any pointers would be great !

>
> > This is what I have on the pix at the moment:-

>
> > My 2511 router is on 192.168.1.111 !

>
> > access-list 101 permit tcp any host 192.168.1.111 eq telnet
> > pager lines 24
> > mtu outside 1500
> > mtu inside 1500
> > ip address outside pppoe setroute
> > ip address inside 192.168.1.3 255.255.255.0
> > ip audit info action alarm
> > ip audit attack action alarm
> > pdm logging informational 100
> > pdm history enable
> > arp timeout 14400
> > global (outside) 1 interface
> > nat (inside) 1 0.0.0.0 0.0.0.0 0 0
> > static (inside,outside) tcp 0.0.0.0 telnet 192.168.1.111 telnet
> > netmask 255.255.255.255 0 0
> > access-group 101 in interface outside

>
> access-list 101 permit tcp any interface outside eq telnet
>
> http://www.cisco.com/univercd/cc/td/...ix/pix_sw/v_63...
>
> static (inside,outside) tcp interface telnet 192.168.1.111 telnet
>
> http://www.cisco.com/univercd/cc/td/...ix/pix_sw/v_63...


Perfect ! Thanks, its now working a treat.

 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Telnet - attempting to initiate a telnet session within an established telnet session Carcarius Ruby 0 12-06-2007 03:26 AM
PIX 506 forwarding telnet port to home lab UPDATE boxers999 Cisco 2 04-28-2007 04:13 PM
pix 501 to pix 506 easy vpn fredrikmagnil@hotmail.com Cisco 3 05-22-2006 06:42 AM
pix 506 logical port support lfnetworking Cisco 1 03-18-2006 02:12 AM
VPN Site-to-Site with PIX 506 and PIX 515UR (6.3.1). How ? Javier Villegas Cisco 1 01-27-2004 07:29 PM



Advertisments