Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Source IP Port in access-list

This may be a silly question but I'm a little baffled. What is the point of source tcp/ip port numbers on access-lists with the pix. I was under the impression that the requester uses a random high port number to establish a session and the well known port number eg 1352 for Lotus Notes only referred to the port used on the server. In this case how can you allow / block by source port when they are randomly generated.

Thanks for your help.

1 REPLY
Silver

Re: Source IP Port in access-list

it is just an option. some protocols may use static ports on both ends. you may want to use the range or other keywords to limit the pool of potential ports

217
Views
0
Helpful
1
Replies
CreatePlease to create content