Enabling Multiple Ports to access Video Conferencing Equipment.

rwamstutz · ‎08-08-2007

All, I need to enable multiple ports (some in a range) so outside Video Conferencing Equipment can access by VC.

How do I allow the ports below using my access-list command? Is there a range command?

access-list acl_out permit tcp any host 64.171.51.211 eq

1720 TCP

3230-3235 TCP

3230-3253 UDP

Jon Marshall · ‎08-08-2007

Hi

Are you using a pix/asa device ? If so you can use object-groups ie.

object-group service VCE_tcp tcp

port-object eq 1720

port-object range 3230 3253

object-group service VCE_udp udp

port-object range 3230 3253

access-list acl_out permit tcp any host 64.171.51.211 object-group VCE_tcp

access-list acl_out permit udp any host 64.171.51.211 object-group VCE_udp

HTH

Jon