How Do i Add A LIne To A PIX Firewall's Access List?
So the first thing you are going to want to do is figure out the name of the ACL attached to your inside interface. You can do this by issuing sh run access-group
you'll get output like below:
PIX# access-group outside_access_in in interface outside
PIX# access-group Wireless_access_in in interface Wireless
PIX# access-group inside_access_in in interface inside
You want the second field - that is the ACL name. So in the above example to add an allowed port on the inside interface of my firewall I need the ACL named "inside_access_in"
to modify the ACL you would issue:
PIX# access-list inside_access_in extended permit tcp host YYY.YYY.YYY.YYY host XXX.XXX.XXX.XXX eq PPPPP
Related videos on Youtube
![Admin](/assets/logo_square_200-5d0d61d6853298bd2a4fe063103715b4daf2819fc21225efa21dfb93e61952ea.png)
Admin
Updated on September 17, 2022Comments
-
Admin almost 2 years
I need to open a port on a PIX 515.
Please can someone explain what I should be entering including the commands.
For the purposes of the explanation (so I can understand it ) I've given the different elements the following ips
Destination IP that the workstation on my network will be contacting: XXX.XXX.XXX.XXX
The workstation on my network YYY.YYY.YYY.YYY
PIX IP: ZZZ.ZZZ.ZZZ.ZZZ
Port = PPPPP
I have logged onto the PIX via Hyperterminal.
Thanks for your help.
-
Admin almost 14 yearswrite term brings up an long access list for in and out but show access-lists in only has two lines in it. How can this be?
-
ndrix almost 14 yearsCould you give an example (just make sure to mask out IP addresses). Also, make sure you're in "enable" mode.
-
Zypher over 13 yearsPIX != Router different OS different syntax