Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Hi Experts,

Can any one help me in blocking all VOIP ports using Access lists on cisco asa 5510.

Thanks for any help.

Everyone's tags (1)
1 REPLY
Hall of Fame Super Silver

Re: Hi Experts,

The more comprehensive approach and best practice is generally to allow what is necessary. Then the implict "deny all" at the end covers anything else.

Something like:

access-list ACL-OUT extended permit tcp any any eq www

access-list ACL-OUT extended permit tcp any any eq [any other ports or protocols you want]

access-group ACL-OUT in interface outside

206
Views
0
Helpful
1
Replies