Access List

[staboogie]

I'm confused with the Access Lists I have on my firewall. I have these set up for rules on the Pix.
access-list 103 permit icmp any any
access-list 103 permit gre any any
access-list 103 permit tcp any host exchange eq smtp
access-list 103 permit tcp any host exchange eq pop3
access-list 103 permit tcp any host exchange eq domain
access-list 103 permit tcp any host exchange eq www
access-list 103 permit tcp any host exchange https
access-list 103 permit tcp any host mx1 eq smtp
access-list 103 permit tcp any host mx1 eq domain
access-list 103 permit tcp any host mx2 eq smtp
access-list 103 permit tcp any host mx2 eq domain
access-list 103 permit tcp any host 12.14.112.x eq 1723
access-list 103 permit tcp any host 12.14.112.x eq 1723
access-list 103 permit tcp any host 12.14.112.x eq https
access-list 103 permit tcp host 164.109.44.x host 12.14.112.x
access-list 103 permit tcp host 164.109.44.24 host 12.14.112.x eq 1433
access-list 103 permit tcp host 12.14.112.109 host 12.14.112.x
access-group 103 in interface outside

and this for our VPN
access-list 102 permit ip 192.168.10.0 255.255.255.0 192.168.1.0 255.255.255.0
nat (inside) 0 access-list 102
When I use the PDM, it doesnt work because it says PDM does not support mulitle users of a given access-list. I'm not sure which one it's talking about though.

 

[Bluecrack]

It looks good to me. Make sure sure that access-list 102 is not used anywhere else. Also make sure that the NAT statement is actually using list 102 and not 103. I know I've mistyped and ended up with the wrong list in the wrong place a number of times.

Bluecrack