Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Windowsupdate not working with acl

Hi,

We have a vlan that we protect from inbound traffic:

   10 permit tcp any any established (189 matches)

    20 permit tcp any xxx.xxx.xxx.xxx 0.0.0.1 eq 554

    30 permit udp any xxx.xxx.xxx.xxx 0.0.0.1 eq 5004

    40 permit udp any xxx.xxx.xxx.xxx 0.0.0.1 eq 5005

    50 permit tcp any xxx.xxx.xxx.xxx 0.0.0.1 eq 1755

    60 permit udp any xxx.xxx.xxx.xxx 0.0.0.1 eq 1755

    70 permit tcp any xxx.xxx.xxx.xxx 0.0.0.1 eq www

    80 permit tcp any xxx.xxx.xxx.xxx 0.0.0.1 eq 8080

    90 permit tcp any xxx.xxx.xxx.xxx 0.0.0.1 eq 443

    100 permit tcp any xxx.xxx.xxx.xxx 0.0.0.1 eq ftp

    110 permit tcp any xxx.xxx.xxx.xxx 0.0.0.1 eq ftp-data

    120 permit tcp any xxx.xxx.xxx.xxx 0.0.0.1 gt 1024

    130 permit tcp xxx.xxx.xxx.xxx 0.0.3.255 xxx.xxx.xxx.xxx 0.0.0.1 eq 3389

    140 permit udp xxx.xxx.xxx.xxx 0.0.3.255 xxx.xxx.xxx.xxx 0.0.0.1 eq 3389

    150 deny ip any any (948 matches)

Why does windowsupdate not work? The established statement should work...

thx,

Marc

1 REPLY

Re: Windowsupdate not working with acl

MSN site have issues with fragmentation and paket sizes.

Try configuring and checking on your WAN interface :

adjust tcp mss

HTH

Regards,

Smitesh

129
Views
0
Helpful
1
Replies
CreatePlease login to create content