Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Close ports

Status
Not open for further replies.
cbeazley

cbeazley

MIS
Aug 22, 2002
76
0
0
CA
I have a 2505 router that I need to apply some security on. I can shut down some ports by using 'no service tcp-small-servers' (and udp) but after running a scan I can still see ports 2001, 4001, 6001 and 9001 open.

What are these ports used for and how do I shut them down without using an ACL ?
 
Sort by date Sort by votes
You may try the following access-list:

access-list 199 deny tcp any any eq 2001
access-list 199 deny udp any any eq 2001
<you should repeat the process for each port you want to block>
Do not forget the implicit deny all at the end of the access-list:
access-list 199 permit ip any any

The access-list should be applied to to input interface:
interface <type> <number>
ip access-group 199 in

Any port over 1023 is user defined.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

BleuBell
  • Locked
  • Question
Command Rejected : Exceeded NNI ports Allowed
Replies
0
Views
53
BleuBell
BleuBell
netguy2000
  • Locked
  • Question
C2960TTL multiple Trunk ports with same VLAN
Replies
1
Views
61
chieftan
chieftan
newglide
  • Locked
  • Question
Muxing trunk ports
Replies
1
Views
54
PScottC
PScottC
davidkr
  • Locked
  • Question
Filtered Ports in NMAP results
Replies
0
Views
37
davidkr
davidkr
marc3lo
  • Locked
  • Question
Async ports
Replies
0
Views
32
marc3lo
marc3lo

Part and Inventory Search

Sponsor

Back
Top