Hello,
I am trying to allow access from lower security interface (caffe network
192.168.3.0/24) to SQL server (192.168.2.1 tcp 1433 and udp 1434) located on higer security interface (ksieg) (I know i should not do this but i need :( ) I do fallowing:access-list caffe_to_ksieg permit tcp 192.168.3.0 255.255.255.0 host
192.168.2.1 eq 1433 access-list caffe_to_ksieg permit udp 192.168.3.0 255.255.255.0 host 192.168.2.1 eq 1434 access-group caffe_to_ksieg in interface caffe static (ksieg,caffe) 192.168.2.1 192.168.2.1 netmask 255.255.255.255 0After that I am able to connect from 192.168.3.0/24 to 192.168.2.1 to 1433/tcp and 1434/udp but also i lost access from 192.168.3.0/24 to outside interface, so i lost my access to internet from that network.
Is there any way to permit access from my lower to higer to specific ports with specific protocol and also don't loose access to ouside interface??
Please help Thanks!
PS. Pix 506e with vlans