Cisco 5510 denies Groupwise from outside

Port 1677 is very important to Groupwise.  I would allow
1677 outbound
and see if that helps.  The 427 is used by SLP (Service
Location
Protocol), which indicates the server is trying to
authenticate the
user via NDS/eDirectory.
Strangely enough, this MS Kb article has useful info:
http://www.microsoft.com/techne
t/prodtechnol/exchange/2003/insider/groupwise.mspx
HTH
Brian
--- In PIX_Firewall@yahoogroups.com, "alpalp55"
<alp...> wrote:
>
> I have a user (visiting director) who needs to check
his email 
> (Groupwise) from inside my firewall when he's onsite. 
The logs are 
> below - I have tried opening his IP from the outside to
port 427 and 
> his IP from the inside port 1029 but it still hangs. 
> 
> Any ideas - or is there something different to
interface with 
> Groupwise servers?
> 
> 
> 
> 
> Deny udp src outside:152.14.52.48/427 dst
inside:152.14.29.187/1029 by 
> access-group "out_in"
> 
> Deny udp src outside:152.14.52.48/427 dst
inside:152.14.29.187/1050 by 
> access-group "out_in"
>








 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://gr
oups.yahoo.com/group/PIX_Firewall/

<*> To unsubscribe from this group, send an email to:
    PIX_Firewall-unsubscribe@yahoogroups.com

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.c
om/info/terms/