We have a possible virus on the network sending out traffic via port 25. I put the below access-list on ther router only allow traffic from the exchange server to send out traffic via port 25.
access-list 150 permit tcp host 192.168.0.2 any eq smtp
access-list 150 deny tcp any any eq smtp
access-list 150 permit ip any any
sh ip access-lists 150
Extended IP access list 150
10 permit tcp host 192.168.0.2 any eq smtp (1010 matches)
20 deny tcp any any eq smtp (1225 matches)
30 permit ip any any (1523 matches)
As soon as I view the access list I can see the this working. I would like to do is run a debug comand to find out what source IP address is being blocked by the rouuter. CAn anyone advise the best debug command I should use. we have Cisco IOS Software, C870 Software (C870-ADVSECURITYK9-M), Version 12.4(4)T4.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...