I am trying to block TFTP traffic with an ACL with the following commands, and have applied it to the appropriate interface (outbound on interface with the server subnet) and I can still copy a file over via TFTP. What am I missing? I have confirmed Solar Winds TFTP server is functioning on UDP port 69.
deny UDP any any eq 69
permit ip any any
outbound ACLs don't block packets that are generated locally on the router itself.
So if you test the ACL by copying a file from the router itself to the TFTP server the result is an apparent failure of the ACL = a successful TFTP file transfer.
Hope to help