Blocking tcp port 4751 and 2745 using ACL on Cisco IOS
We are currently being hit by the beagel worm and we are doing scan to determine individual clients who are infected. This beagle worm use tcp port 4751 and 2745.
We use Etherreal to scan our Network and found out that some of our clients uses this port and the thing that tells us that it is not a valid request, was that it use that port numbers to communicate with invalid address on our network like 129.x.x.x etc.
I want to block this TCP ports in and out of the serial or fastethernet port of my routers.
Re: Blocking tcp port 4751 and 2745 using ACL on Cisco IOS
from what I understood, I would apply these access-lists, assuming that fa0/0 is interface directly connected with your network, so ACL 100 will match any packet with tcp 4751 and 2745 with source address your "valid" address range to any destination, and ACL 101 will match any packet with tcp 4751 and 2745, and will allow any packet from internet (except packets with port 4751 and 2745) with destination your address range.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...