Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Cisco Workaround

From: "dave kleiman" <dave () netmedic net>
Date: Wed, 23 Jul 2003 23:17:45 -0400
These are IP protocols you are denying no TCP or UDP protocols.

i.e 103 = PIM Protocol Independent Multicast


 
_____________________
Dave Kleiman
dave () netmedic net
www.netmedic.net

"High achievement always takes place in the framework of high expectation."
Jack Kinder

 


-----Original Message-----
From: Alvaro Gordon-Escobar [mailto:alvaroge () molecularstaging com] 
Sent: Wednesday, July 23, 2003 10:15
To: firewalls () securityfocus com; security-basics () securityfocus com
Subject: Cisco Workaround

will this access list modification prevent my internal DNS server from
updates to it self from my telco's DNS server?

access-list 101 deny 53 any any
access-list 101 deny 55 any any
access-list 101 deny 77 any any
access-list 101 deny 103 any any
!--- insert any other previously applied ACL entries here
!--- you must permit other protocols through to allow normal
!--- traffic -- previously defined permit lists will work
!--- or you may use the permit ip any any shown here
access-list 101 permit ip any any

Thanks in advance

~alvaro Escobar

---------------------------------------------------------------------------
----------------------------------------------------------------------------





---------------------------------------------------------------------------
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: