515e access-list problems

Discussion in 'Cisco' started by walter matthews, Aug 6, 2004.

  1. Guys,

    I'm new to cisco pix and i'm working on getting some rules in.I seem to be
    stuck in a particular access-list...pls advise

    **i wanna assign visible ip to an internal host and allow it to access the
    net and also use ftp



    -static (inside,outside) 202.6.160.174 172.16.25.115

    -access-list 102 permit ip any host 202.6.160.174 eq www

    -access-list 102 permit tcp 202.6.160.174 any eq ftp

    -access-group 102 in interface e0



    The IOS doesn't seem to register the 2nd command.Can someone provide some
    advice.Is my access-list syntax off?
    walter matthews, Aug 6, 2004
    #1
    1. Advertising

  2. walter matthews

    Glenn Rowe Guest

    which command ?

    On Fri, 06 Aug 2004 19:39:54 +0800, walter matthews wrote:

    > Guys,
    >
    > I'm new to cisco pix and i'm working on getting some rules in.I seem to be
    > stuck in a particular access-list...pls advise
    >
    > **i wanna assign visible ip to an internal host and allow it to access the
    > net and also use ftp
    >
    >
    >
    > -static (inside,outside) 202.6.160.174 172.16.25.115
    >
    > -access-list 102 permit ip any host 202.6.160.174 eq www
    >
    > -access-list 102 permit tcp 202.6.160.174 any eq ftp
    >
    > -access-group 102 in interface e0
    >
    >
    >
    > The IOS doesn't seem to register the 2nd command.Can someone provide some
    > advice.Is my access-list syntax off?
    Glenn Rowe, Aug 6, 2004
    #2
    1. Advertising

  3. walter matthews

    Glenn Rowe Guest

    Try --

    static (inside,outside) 202.6.160.174 172.16.25.115
    access-list 102 permit tcp any host 202.6.160.174 eq www
    access-list 102 permit tcp host 202.6.160.174 any eq ftp
    access-group 102 in interface e0


    G


    On Fri, 06 Aug 2004 19:39:54 +0800,
    walter matthews wrote:

    >
    > -static (inside,outside) 202.6.160.174 172.16.25.115
    >
    > -access-list 102 permit ip any host 202.6.160.174 eq www
    >
    > -access-list 102 permit tcp 202.6.160.174 any eq ftp
    >
    > -access-group 102 in interface e0
    Glenn Rowe, Aug 6, 2004
    #3
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. PS2 gamer
    Replies:
    6
    Views:
    6,687
    Hansang Bae
    Jun 9, 2004
  2. paeengi8
    Replies:
    0
    Views:
    795
    paeengi8
    Jun 25, 2007
  3. leuzz
    Replies:
    3
    Views:
    567
  4. Southern Kiwi
    Replies:
    6
    Views:
    2,114
    Southern Kiwi
    Mar 19, 2006
  5. ally0000

    Pix 515E Access List issue

    ally0000, Jan 12, 2008, in forum: Hardware
    Replies:
    3
    Views:
    1,381
    ally0000
    Feb 15, 2008
Loading...

Share This Page