Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

ACL - destination port

Status
Not open for further replies.
SmallRoad

SmallRoad

IS-IT--Management
Aug 2, 2001
15
GB
I am trying to block SNMP and SNMP Trap comming into my network from a connected site, but the traffic comes in on what appears to be changing port numbers although the destination ports 161 and 162 are the same. Can I write an access list based on the destination port of a packet when the source port is variable?

I have tried, access-list 103 deny tcp any any range 161 162
but this seems to be looking for source port, I want to say any any ANY range 161 162

Thanks,
Alastair

 
Sort by date Sort by votes
"access-list 103 deny tcp any any range 161 162" should work.

This access-list says that you are denying any source IP address going to any destination IP address with a destination TCP port range of 161 to 162. Orlando Palomar Jr
CCIE# 11206, CCNP
CIPT Operations Specialist
Phil-Data Business Systems, Inc.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Zero6
  • Locked
  • Question
question about cisco cbs 350-12xs 12 port 10g sfp+
Replies
0
Views
126
Zero6
Zero6
Gartech
  • Locked
  • Question
LAN Port Test Device
Replies
3
Views
124
ipohead
ipohead
BleuBell
  • Locked
  • Question
Command Rejected : Exceeded NNI ports Allowed
Replies
0
Views
84
BleuBell
BleuBell
amelamel
  • Locked
  • Question
port has faulty link
Replies
2
Views
284
ADB100
ADB100
Mogles49
  • Locked
  • Question
Firewall ACL question
Replies
1
Views
97
burtsbees
burtsbees

Part and Inventory Search

Sponsor

Back
Top