Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2263
Views
5
Helpful
4
Replies

need help with acl for rdp

adam.mcdonald
Level 1
Level 1

‎09-20-2007 09:44 AM - edited ‎03-05-2019 06:36 PM

i am looking to create an acl to block all traffic except for remote desktop connections to an interface on a cisco 3640

the total network is basically a 10.0.0.0 and the network for the interface is 10.101.150.0

Labels:
0 Helpful
4 Replies 4

Jon Marshall
Hall of Fame
Hall of Fame

‎09-20-2007 09:58 AM

Hi Adam

It's not clear what you mean by an interface on the router. The following access-list would only allow rdp connections but it's a little difficult to suggest which interface to apply it to and in which direction.

access-list 101 permit tcp any 10.101.150.0 255.255.255.0 eq 3389

access-list 101 deny ip any any

int fa0/0

ip access-group 101 out

This assumes the network 10.101.150.0 is connected to the fa0/0 interface on your router.

The above access-list will only allow traffic sent to a host on 10.101.150.0 network on port 3389. It will block everything else.

HTH

Jon

adam.mcdonald
Level 1
Level 1
In response to Jon Marshall

‎09-20-2007 10:08 AM

sorry i should have been a little more specific. the interface would be fastethernet 0/1 and i want to limit all inbound and outbound traffic

0 Helpful

joshdloan
Level 1
Level 1

‎09-20-2007 12:01 PM

access-list 110 permit tcp 10.0.0.0 0.255.255.255 host 10.101.150.0 0.0.0.255 eq 3389

apply it to the interface

0 Helpful

joshdloan
Level 1
Level 1
In response to joshdloan

‎09-20-2007 12:03 PM

oops.. too much time on the PIX. those wild card masks should be reversed. 255.0.0.0.0, etc

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card