Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Border Gateway TCP IP Firewall ports 1

Status
Not open for further replies.

nicolasgreening

IS-IT--Management
Jul 10, 2002
37
GB
Afternoon all

We are having a border gateway installed and in preperation we need to set up the firewall rules. we want to restrict this to just the required ports but as we are not a Mitel partner I can not get a login to down load the techniacl documents from Mitel Edoc's

Can anyone send me them or which ports need to be opened?

Thanks in advance

Nick
 
These are our Cisco ASA rules - ensure that you are running the latest MBG, as one of the resent versions had a problem with one-way-audio between teleworkers.

Hope this helps

access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 6801
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 6802
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 3998
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 6880
access-list EXTERNAL_ACCESS_IN extended permit udp any host EXT.IP.ADD.RESS range 20000 23000
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 3300
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 2114
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 2116
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 35000
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq 37000
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq https
access-list EXTERNAL_ACCESS_IN extended permit tcp any host EXT.IP.ADD.RESS eq www
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq ssh
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 6801
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 6802
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 3998
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 6880
access-list DMZ_ACCESS_IN extended permit udp host DMZ.IP.ADD.RESS any range 20000 23000
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 3300
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 2114
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 2116
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 35000
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 37000
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS INT.NETWRK.ADD.RESS 255.255.0.0 eq 6800
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS INT.NETWRK.ADD.RESS 255.255.0.0 eq 3999
access-list DMZ_ACCESS_IN extended permit udp host DMZ.IP.ADD.RESS INT.NETWRK.ADD.RESS 255.255.0.0 range 1024 65535
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 6800
access-list DMZ_ACCESS_IN extended permit tcp host DMZ.IP.ADD.RESS any eq 3999
static (DMZ,Outside) EXT.IP.ADD.RESS DMZ.IP.ADD.RESS netmask 255.255.255.255
static (DMZ,inside) EXT.IP.ADD.RESS DMZ.IP.ADD.RESS netmask 255.255.255.255
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top