I have the pix (501 v6.2(2) PDM 2.1 (1)) setup and running as a DHCP server, and is configured – I used Terminal emulation to reset to default before proceeding, then set options, then enabled Telnet access from my LAN……..so….. Question: How can I configure access via rdp-3389 for all outside traffic? And PAT it then to 192.168.0.2. My outside interface is 71.193.126.197 255.255.254.0. Inside = 192.168.0.1 I used tutorials such as these, but they then block all internet access from the LAN…??? http://www.howtonetworking.com/cisc... (shown below here) Cisco PIX port forwarding Q: We have a Cisco PIX 515E as gateway connecting to the Internet. We would like to forward port 3389 pointing to a terminal server. What are the commands? A: telnet to your PIX, for example telnet 10.0.0.1 (this is the PIX internal IP address). add the following command lines. access-list outside_access_in permit tcp any host x.x.x.x eq 3389 static (inside,outside) x.x.x.x 10.0.0.28 netmask 255.255.255.255 0 0 x.x.x.x is the external IP address and 10.0.0.28 is the internal TS IP address. Ted Pethick

Command for NAT. static (inside,outside) tcp 71.193.126.197 3389 192.168.0.2 3389 netmask 255.255.255.255 0 0 Command for access-list access-list outside_access_in permit tcp any interface outside eq 3389 For future reference I wouldn't use your true public IP and post it on the web. I like long walks, especially when they are taken by people who annoy me.