Re: PIX DMZ Setup?

I'm trying to setup a server on a PIX 515 DMZ interface and allow it to

> talk freely to the Internet going outbound while allowing only inbound > port 3389 traffic?

There is no ACL for the nated host to get out.

> Here's what I have at this time for the dmz interface >> > > > > nameif ethernet2 dmz security50 > > ip address dmz > > static (dmz,outside) tcp 3389 3389 netmask > 0 0 > > access-list dmz-in permit tcp any host eq 3389 > > access-group dmz-in in interface outside >
Reply to
Alain Pierre
Loading thread data ...

But why would I need an ACL for a host to get out from an interface with security50 to an interface with security0?

Reply to
David Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.