Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

Access List

Two servers are there say A & B. Both are in different VLAN. I can ping the server in both direction but I can open the shared folder through run command (\\ServerA\shareddrive). The switch having an ACL to permit only RDP and SQL traffic from Server B to A.

Please let me know which I have to enable to open the server through explorer.

Thanks

1 ACCEPTED SOLUTION

Accepted Solutions

Re: Access List

I would sniff the traffic and see what protocols it uses. If you want to go ahead and try the access list without sniffing first, try UDP/135, UDP/137, UDP/138, TCP/138 and TCP/455.

Then try a permit ip any any log at the end - that will tell you if you have missed anything.

Kevin Dorrell

Luxembourg

5 REPLIES

Re: Access List

HI,

Normally, i know there is no specific Port / Service to Permit for using the shared drive access.

permit any any

will help in closing this Issue (or) if the shared drive in Server will be accessed only during certain Hrs in a day means i would recommend "Time Based ACLs".

Pls Rate if Helps

Best Regards,

Guru Prasad R

Re: Access List

I would sniff the traffic and see what protocols it uses. If you want to go ahead and try the access list without sniffing first, try UDP/135, UDP/137, UDP/138, TCP/138 and TCP/455.

Then try a permit ip any any log at the end - that will tell you if you have missed anything.

Kevin Dorrell

Luxembourg

Re: Access List

To correct Kevin, its not 455 but TCP 445.

Re: Access List

Sorry, keyboard dyslexia!

Community Member

Re: Access List

Hi Kevin,

Thank you, It resolved my problem.

146
Views
4
Helpful
5
Replies
CreatePlease to create content