I am trying to restict SNMP access to only one machine on our network.
I tried using this workaround posted by Cisco, but it doesn't work in my routers operating system, CIOS 10.0
Can someone modify the lines below to work with version 10?
thanks!
Brooks
===============
Apply an extended access list (ACL) to deny protocol UDP, port 161 and 162, at the interface level such that SNMP access to the device is allowed only from the
network management workstations. This can be done using the following configure commands:
access-list 100 permit ip host 1.1.1.1 any
access-list 100 deny udp any any eq snmp
access-list 100 deny udp any any eq snmptrap
access-list 100 permit ip any any
where 1.1.1.1 is the trusted network management station. This access list must be applied to all interfaces using the following configure commands:
interface serial 0
ip access-group 100 in
================
I tried using this workaround posted by Cisco, but it doesn't work in my routers operating system, CIOS 10.0
Can someone modify the lines below to work with version 10?
thanks!
Brooks
===============
Apply an extended access list (ACL) to deny protocol UDP, port 161 and 162, at the interface level such that SNMP access to the device is allowed only from the
network management workstations. This can be done using the following configure commands:
access-list 100 permit ip host 1.1.1.1 any
access-list 100 deny udp any any eq snmp
access-list 100 deny udp any any eq snmptrap
access-list 100 permit ip any any
where 1.1.1.1 is the trusted network management station. This access list must be applied to all interfaces using the following configure commands:
interface serial 0
ip access-group 100 in
================