Cisco Support
English
Feedback Help
Cisco Support Community
Register
cancel
turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
zapanta.f
zapanta.f
Community Member
‎09-18-2006 10:31 AM
‎09-18-2006 10:31 AM

Re: Access List question

Thanks in advance!!

Does any one know what is an alternative command to add an access list for NTP access from segment A to Segment B.? I have tried to use the NTP and port number and the IOS will not take the command.

"Access-list 100 permit udp x.x.x.x x.x.x.x host x.1.2.3.4 "123/ntp"

I have tried to "NTP" and port "123" and the CICSO IOS would not take it. I have the latest IOS will be posted below.

IOS (tm) C2600 Software (C2600-IK9S-M), Version 12.2(31), RELEASE SOFTWARE (fc2)

Technical Support: http://www.cisco.com/techsupport

Copyright (c) 1986-2005 by cisco Systems, Inc.

Compiled Thu 11-Aug-05 17:24 by tinhuang

Image text-base: 0x8000808C, data-base: 0x8128D9F4

Thanks...

0 Helpful
Reply
3 REPLIES
lgijssel
lgijssel Red
Red
‎09-18-2006 11:24 AM
‎09-18-2006 11:24 AM

Re: Re: Access List question

I'm sorry but you have the wrong syntax. The acl should look like this:

access-list 100 permit udp any host 1.2.4.5 eq ntp

The interesting point in this acl is after the first ip address. (any in this case) There you may choose between the following:

rtr(config)#access-l 100 permit udp any ?

A.B.C.D Destination address

any Any destination host

eq Match only packets on a given port number

gt Match only packets with a greater port number

host A single destination host

lt Match only packets with a lower port number

neq Match only packets not on a given port number

range Match only packets in the range of port numbers

This means that you may either specify a range of source ports or go on directly entering the destination. This implies all source ports.

And btw: all these xxxx; are you doing that because everybody does or do you really fear that you are giving away valuable info? No need to comment, just think about it.

Regards,

Leo

0 Helpful
Reply
m-haddad
m-haddad Silver
Silver
‎09-18-2006 11:48 AM
‎09-18-2006 11:48 AM

Re: Re: Access List question

I guess you forgot the EQ at the end of the list. Should look like that:

Access-list 100 permit udp x.x.x.x x.x.x.x host x.1.2.3.4 eq ntp

PLease rate if I could help,

Thanks,

0 Helpful
Reply
zapanta.f
zapanta.f
Community Member
‎09-18-2006 01:03 PM
‎09-18-2006 01:03 PM

Re: Re: Access List question

Thank you!! I figured that out after a few minutes of going through the acl's. :)

Thanks again!

0 Helpful
Reply
Latest Documents
Cisco ESW-520-24P Switch Configuration
Created by Kevin DeMott on 04-19-2018 01:49 PM
0
0
0
0
We have 3 identical switches configured by someone else and would like to claim some of the Gigabit ports(G1/G2/G3/G4) for use on servers.  When we try to change the wiring and configuration, we run in to connectivity issues.  Attached is a des... view more
BGP Conditional Advertisement Feature
Created by Dennis Mink on 03-06-2018 09:17 PM
8
10
8
10
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does   "Th... view more
le router cisco 887 VA-K9 ne diffuse pas les adresses IP au reseau local
Created by mustiman on 03-05-2018 05:53 AM
5
0
5
0
Question   bonjours j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m... view more
All Documents
105
Views
0
Helpful
3
Replies
CreatePlease to create content
Discussion
Blog
Document
Video
Popular Blogs
Glimpse of "EIGRP name mode configuration"
Created by ashirkar on 10-01-2013 02:06 AM
7
74
7
74
What happens, when router receives packet?
Created by ashirkar on 10-18-2012 03:19 AM
31
49
31
49
BLOG (No Title)
Created by Akula Jyoti Lakshmi on 08-09-2011 09:13 PM
15
43
15
43
All Blogs