I'm setting up an SG-300 and would like to block some traffic with ACLs. While I'm new to cisco products, I was able to easily setup an IP based ACL to restrict certain IPs from accessing specific ports, but my problem is with applying these ACLs to specific protocols. When I add them the protocols are blocked effectively, but I can't seem to allow any traffic to return on a different port. I can't seem to figure out how to apply the ACL to traffic in one direction and allow other ports to send the data back on other ports (ie with ftp). Service using those ports seem to hang. I've even put the switch into Layer 3 mode to see if that would change things, with no luck.
Below is a snippet of my ACL:
ip access-list extended "Webserver port restrictions"
permit icmp any any any any
permit tcp any 20-22 any any
How can I modify this to allow incoming traffic on port 20 to be returned on other ports, but still block those other ports from incoming traffic?
Hi every one!!!When you are configuring a remote VPN connection, there
are some steps that are lost on the path. Here you can see those steps.
A) In your Cisco device: 1. Ensure you don´t have any rule denying the
traffic between the device and the remote...
You have a Cisco Unified Communications Manager (CUCM) system and want
to configure a SPA112 analog telephone adaptor (ATA) to register to the
CUCM so that you can use up to two analog phones or similar FXS devices
with the CUCM.In this application note, ...
Introduction: This document describes how to connect SG300 with Catalyst
switch via STP. Spanning Tree Protocol (STP) is a Layer 2 protocol that
runs on mainly on switches. The specification for STP is IEEE 802.1D.
The main purpose of STP is to ensure tha...