ASA/PIX, IDS, IPS, VPN, Cisco Secure ACS, AAA, ISE.
User avatar
viz
New Member
Posts:
9
Joined:
Mon Jan 10, 2005 5:40 am

Stopping ports responding

Thu Feb 24, 2005 5:08 am

Want to have the option to stop all ports (especially those above 1024) responding to any deliberate attempts to establish a connection, except from approved external IP addresses. At the moment ports are responding.

Any ideas?

/viz
Mac G5 2.5, XP, Linux (Debian), Cisco 837: C837 Software (C837-K9O3SY6-M), Version 12.3(2)XC2. Cisco newbie! Be gentle :)

User avatar
jdsilva
Post Whore
Posts:
5347
Joined:
Mon Jan 17, 2005 11:01 pm
Certs:
CCNP

Thu Feb 24, 2005 6:00 am

On what? A cisco router? A PIX firewall? A workstation?

If you're using a cisco router you can use an ACL. Create a list to allow what you want, and then the implicit deny any on the end will filter the rest.

'

Return to Cisco Security

Who is online

Users browsing this forum: Bing [Bot] and 21 guests