OUR FIREWALL IS CONFIGURED BBLOW
pdm location 192.168.1.140 255.255.255.255 inside
pdm location 192.168.1.135 255.255.255.255 inside
pdm logging informational 100
pdm history enable
arp timeout 14400
global (outside) 1 interface
nat (inside) 0 access-list nonat
nat (inside) 1 0.0.0.0 0.0.0.0 0 0
static (inside,outside) tcp interface 3389 192.168.1.130 3389 netmask 255.255.25
5.255 0 0
static (inside,outside) tcp interface domain 192.168.1.130 domain netmask 255.25
5.255.255 0 0
static (inside,outside) tcp interface ftp 192.168.1.130 ftp netmask 255.255.255.
255 0 0
static (inside,outside) tcp interface 5900 192.168.1.98 5900 netmask 255.255.255
.255 0 0
static (inside,outside) tcp interface 5800 192.168.1.98 5800 netmask 255.255.255
.255 0 0
static (inside,outside) tcp interface smtp 192.168.1.132 smtp netmask 255.255.25
5.255 0 0
static (inside,outside) tcp interface pop3 192.168.1.132 pop3 netmask 255.255.25
5.255 0 0
static (inside,outside) tcp interface 255.255.255.
255 0 0
static (inside,outside) tcp interface imap4 192.168.1.132 imap4 netmask 255.255.
255.255 0 0
static (inside,outside) tcp interface 6881 192.168.1.19 6881 netmask 255.255.255
.255 0 0
static (inside,outside) tcp interface 3306 192.168.1.140 3306 netmask 255.255.25
5.255 0 0
static (inside,outside) tcp interface ssh 192.168.1.135 ssh netmask 255.255.255.
255 0 0
THEY WANT TO HAVE ANOTHER SSH PORT OPEN FOR 192.168.1.140. AS FAR AS I KNOW IT IS ONLY A ONE TO ONE CONVERSATION. HOW COULD I ALLOW AN OUTSIDE IP ADDRESS TO COMMUNICATE TO ANOTHER SERVER BESIDES THE 192.168.1.135 USING SSH?
THANKS!
pdm location 192.168.1.140 255.255.255.255 inside
pdm location 192.168.1.135 255.255.255.255 inside
pdm logging informational 100
pdm history enable
arp timeout 14400
global (outside) 1 interface
nat (inside) 0 access-list nonat
nat (inside) 1 0.0.0.0 0.0.0.0 0 0
static (inside,outside) tcp interface 3389 192.168.1.130 3389 netmask 255.255.25
5.255 0 0
static (inside,outside) tcp interface domain 192.168.1.130 domain netmask 255.25
5.255.255 0 0
static (inside,outside) tcp interface ftp 192.168.1.130 ftp netmask 255.255.255.
255 0 0
static (inside,outside) tcp interface 5900 192.168.1.98 5900 netmask 255.255.255
.255 0 0
static (inside,outside) tcp interface 5800 192.168.1.98 5800 netmask 255.255.255
.255 0 0
static (inside,outside) tcp interface smtp 192.168.1.132 smtp netmask 255.255.25
5.255 0 0
static (inside,outside) tcp interface pop3 192.168.1.132 pop3 netmask 255.255.25
5.255 0 0
static (inside,outside) tcp interface 255.255.255.
255 0 0
static (inside,outside) tcp interface imap4 192.168.1.132 imap4 netmask 255.255.
255.255 0 0
static (inside,outside) tcp interface 6881 192.168.1.19 6881 netmask 255.255.255
.255 0 0
static (inside,outside) tcp interface 3306 192.168.1.140 3306 netmask 255.255.25
5.255 0 0
static (inside,outside) tcp interface ssh 192.168.1.135 ssh netmask 255.255.255.
255 0 0
THEY WANT TO HAVE ANOTHER SSH PORT OPEN FOR 192.168.1.140. AS FAR AS I KNOW IT IS ONLY A ONE TO ONE CONVERSATION. HOW COULD I ALLOW AN OUTSIDE IP ADDRESS TO COMMUNICATE TO ANOTHER SERVER BESIDES THE 192.168.1.135 USING SSH?
THANKS!