Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
255
Views
0
Helpful
1
Replies

spreading

alsayed
Level 1
Level 1

‎11-10-2007 11:39 AM - edited ‎03-03-2019 05:47 AM

hi

i have trogen spread via network via the Port 445 ?how can i block it via ACCESS-LIST?WHERE CAN I USE THE ACCESS-LIST,ON WITCH SWITCH!THE ACCESS OR THE Ds

10xs

Labels:
0 Helpful
1 Reply 1

Jon Marshall
Hall of Fame
Hall of Fame

‎11-10-2007 11:42 AM

Hi Ali

access-list 101 deny tcp any any eq 445

access-list 101 permit ip any any

You then apply this to your L3 interfaces whether they be routed ports or Vlan interfaces wherever you have client PC's or servers.

ip access-group 101 in

The problem is though that port 445 is used by Windows for a lot of it's functionality and if you block this port a lot of the pc's functionality will not work eg. things such as file sharing for example.

Jon

0 Helpful
Customers Also Viewed These Support Documents