I believe your question was:
"Yizhar,
Do I have to re-apply the access-group statement everytime I make an entry in the access-list? "
The answer to that is yes, your command
no access-list frominside
wipes the list and unapplies it from the interface it was applied to.
Bud
Here's my guess:
Allow udp 500 in to the address 111.111.111.230, and also allow protocol 50 ESP to the same address.
access-list svrs_out permit 50 any host 111.111.111.230
access-list svrs_out permit udp any host 111.111.111.230 eq 500
This looks like routing. If you have 192.168.1.0/24 at both ends the address range conflict will prevent forwarding to the default gateway. Do a "route print" to check this.
someone is trying to open an ftp session to you. if its always the same address, think about blocking that address or range at the perimeter router. If its from many different addresses, you really can't do much.
Can I ask how the snmptrap command works?
I have tried snmptrap /?, and help etc, even on my openview/nt4 machine, then I searched google and m$ and hp sites. I can't find where the command options are explained. Maybe its in my hpopenview training materials, but I keep that at work.
I tried the...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.