Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

equivalent commands on ver6.3 and 8.0

please correct my if I'm wrong with these old 6.3 command statements to a ver8.0

Version 6.3

conduit deny tcp any eq 1434 any

conduit deny udp any eq 1434 any

Version 8.0

access-list outside deny tcp any any eq 1434

access-list outside deny udp any any eq 1434

or, does an implicit deny statements is on the end of the access-list? no need to add deny statements?

1 REPLY
Community Member

Re: equivalent commands on ver6.3 and 8.0

Hi,

The commands here are identical. the source and destination in the conduit is in swaped order of the access list.

Of cource there is an implicit deny statement, but if you want to deny access to specific hosts or services, you have to put these deny statements at the begining of the access list, to ensure that the access to these services are denied.

regards

118
Views
0
Helpful
1
Replies
CreatePlease to create content