Clicky

How can i allow traffic only by public IP address in my ASA5505 router

asked 10/03/2011 12:46

Prabir_Bhattacharjee's gravatar image

Prabir_Bhattacharjee ♦♦


4 Answers:
kindly brief more about your exact requirements..
link

answered

anoopkmr's gravatar image

anoopkmr

I have configure a RDP server to access my office data. And i did port forwarding in my CISCO ASA5505, and everything is working fine. Currently i like to setup it in such way that only pre-define public ip address can access my network, if some one tries from some other location ASA should reject the traffic. Basically i am try to filter my incoming traffic by Public IP ADDRESS
link

answered 2011-10-03 at 11:58:15

Prabir_Bhattacharjee's gravatar image

Prabir_Bhattacharjee



configure an access-list to allow only the known IP adress and applied it as "in:" to the interface facing internet/outside.
link

answered 2011-10-03 at 14:27:37

anoopkmr's gravatar image

anoopkmr

Your existing access-list probably looks like:

access-list outside_access_in permit tcp any interface outside eq 3389

Remove this config by putting "no" in front of it and applying it.  Change this to something like:

access-list outside_access_in permit tcp 65.3.3.0 255.255.255.0 interface outside eq 3389

or if you wanted to just permit one single IP then:

access-list outside_access_in permit tcp host 65.3.3.2 interface outside eq 3389

(replace the IPs with your IPs you want configured)
link

answered 2011-10-03 at 22:16:44

gavving's gravatar image

gavving

Your answer
[hide preview]

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Tags:

Asked: 10/03/2011 12:46

Seen: 245 times

Last updated: 10/20/2011 07:33