I need to create ACL's for my 3825 router, but I do not know which packets are coming through. I need to allow some arbitrary packets in the upper ranges, but I do not know what ports they are coming through.
I tried to use the "capture" command on my router, but it does not seem to exist.
In my suggestion the log messages will have the exact port number that was in the packet and not just the range.
The key concept to understand here is that is you just do some thing like permit ip any any or even permit tcp any any then the log records will show zero in the port number. The log record can not show the actual port if the access list is not looking for port numbers. The reason to use the range (or to use gt) is to get the access list to examine the port number which will allow it to report the port number.
We are pleased to announce availability of Beta software for 16.6.3. 16.6.3 will be the second rebuild on the 16.6 release train targeted towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are looking for early feedback from custome...