Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ACL for citrix protocol

What type of ACL is necessary to restrict traffic to ICA (citrix) protocol only? Is it just standard ACL permitting TCP on port 1494 and udp on port 1604? Also when or why would b Dynamic ACLs be necessary?

i.e., if the Ip Address on my terminal server is 192.168.10.5, and I want anyone on the network to establish a terminal session, what would the ACL look like.

1 REPLY

Re: ACL for citrix protocol

It could use tcp as well as udp ports on both 1494 and 1604.

access-list 101 permit tcp any host 192.168.10.5 eq 1604

access-list 101 permit udp any host 192.168.10.5 eq 1604

access-list 101 permit tcp any host 192.168.10.5 eq 1494

access-list 101 permit udp any host 192.168.10.5 eq 1494

int fa0/0

access-group 101 in

334
Views
0
Helpful
1
Replies