02-10-2010 06:20 AM - edited 03-11-2019 10:07 AM
what is the command to stop the ASA from using common service names instead of ports? Like instead of showing "telnet" in an acl i want to see "23"
Also is there a cisco document that shows what ports it considers to be common services (and also shows the names that these common ports are replaced with?)
02-10-2010 06:46 AM
question mark after the "eq" revealed the following:
ASA(config)#access-l test per tcp h 1.1.1.1 any eq
aol
bgp
chargen
cifs
citrix-ica
cmd
ctiqbe
daytime
discard
domain
echo
exec
finger
ftp
ftp-data
gopher
h323
hostname
http
https
ident
imap4
irc
kerberos
klogin
kshell
ldap
ldaps
login
lotusnotes
lpd
netbios-ssn
nfs
nntp
pcanywhere-data
pim-auto-rp
pop2
pop3
pptp
rsh
rtsp
sip
smtp
sqlnet
ssh
sunrpc
tacacs
talk
telnet
uucp
whois
www
I am not sure if there is a link for this.
I am not aware of an option to disable this either.
-KS
02-10-2010 06:48 AM
I know what the list looks like....what i dont know if what port does it associate with uucp? ident? irc? rtsp? etc....
02-10-2010 07:01 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide