01-22-2006 03:08 AM - edited 03-03-2019 01:32 AM
What do the following ACLs mean?
deny or permit deny ip host 127.0.0.1 any
deny or permit deny tcp any any eq 1025
deny or permit deny tcp any any eq 445
deny or permit deny udp any any eq 445
deny or permit tcp any any range 135 139
deny or permit udp any any range 135 netbios-ss
Solved! Go to Solution.
01-22-2006 03:26 AM
Hi,
deny or permit deny ip host 127.0.0.1 any
- matches on packets sourced from the loopback address 127.0.0.
deny or permit deny tcp any any eq 1025
- matches on packets destined to tcp port 1025, which is used by by the Microsft RPC service
deny or permit deny tcp any any eq 445
- matches on packets destined to tcp port 445, which is used by windows for supporting Samba over TCP
deny or permit deny udp any any eq 445
- matches on packets destined to tcp port 445, which is used by windows for supporting Samba over UDP
deny or permit tcp any any range 135 139
- matches on packets destined to tcp ports 135-139, which are used by by the Microsft RPC & NetBIOS services
deny or permit udp any any range 135 netbios-ss
- matches on packets destined to udp ports 135-139, which are used by by the Microsft RPC & NetBIOS services
These entries are typically used in ACLs for the provision of security by blocking access to common Microsoft services...
Pls remember to rate posts.
Paresh
01-22-2006 03:26 AM
Hi,
deny or permit deny ip host 127.0.0.1 any
- matches on packets sourced from the loopback address 127.0.0.
deny or permit deny tcp any any eq 1025
- matches on packets destined to tcp port 1025, which is used by by the Microsft RPC service
deny or permit deny tcp any any eq 445
- matches on packets destined to tcp port 445, which is used by windows for supporting Samba over TCP
deny or permit deny udp any any eq 445
- matches on packets destined to tcp port 445, which is used by windows for supporting Samba over UDP
deny or permit tcp any any range 135 139
- matches on packets destined to tcp ports 135-139, which are used by by the Microsft RPC & NetBIOS services
deny or permit udp any any range 135 netbios-ss
- matches on packets destined to udp ports 135-139, which are used by by the Microsft RPC & NetBIOS services
These entries are typically used in ACLs for the provision of security by blocking access to common Microsoft services...
Pls remember to rate posts.
Paresh
01-22-2006 04:13 AM
thanks;
Where can I find a complete list of these options?
reza
01-22-2006 04:18 AM
You can't.. you just have to find out the applications you want to block and craft access-lists accordingly.
However, the following site maintains a secure IOS template that you can use as a starting point:
http://www.cymru.com/Documents/secure-ios-template.html
Pls rate the post if it helps.
Paresh
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: