List Info

Thread: Re: TCP access list / EW 7.6
Re: TCP access list / EW 7.6
country flaguser name
France		 2007-08-27 05:32:01 
Hello,


Strange behaviour... did you configure it that way ?

create access-list deny_137 tcp dest any ip-port 137 source
any ip-port any deny ports any


Stephane.

>I have an access list like that:
>* Alpine3808:31 # show access-list
>  Rule          Dest/mask:L4DP          Src/mask:L4SP   
     Flags  Hits
>port_137 0.0.0.0        /0 :137   0.0.0.0        /0 :0  
  T-D-X 0
>Flags: I=IP, T=TCP, U=UDP, E=Established, M=ICMP,
G=IGMP
>       P=Permit Rule, D=Deny Rule
>       N=Port Specific Rule, X=Any Port
>
>but, if I try to do a telnet to port 137 it is not
notified in "Hits" and >it 
>is not dropped.
>As I could see, only pure IP acl works, but TCP and UDP
no.
_______________________________________________
extreme-nsp mailing list
extreme-nsppuck.nether.net

https://puck.nether.net/mailman/listinfo/extreme-nsp
[1]

about | contact  Other archives ( Real Estate discussion Medical topics )