Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

How to avoid RST response from a closed port

I would like to configure a router and a switch disabling any response from a close port. For example, a port scan could not show closed ports, so none will be able to discover the device.

I need to disable to send a RST in response to a SYN to a closed port. Is it possible?

2 REPLIES
New Member

Re: How to avoid RST response from a closed port

Jorge,

Depends if I'm understanding you correctly... :) You can configure an access list to deny packets with the RST flag set.

access-list 100 deny tcp any any rst

access-list 100 permit ip any any

--Tim

New Member

Re: How to avoid RST response from a closed port

An ACL could work in a router but how about a switch.

My question is focus on a feature to securize a Cisco device, disabling a port scan.

248
Views
0
Helpful
2
Replies