Re: SNMP ports

From: Mingzhou Nie (mnie@xxxxxxxxx)
Date: Fri Aug 09 2002 - 13:03:23 GMT-3

• Next message: Dean Whitley: "RE: DLSW over Frame Relay"
• Previous message: Dan.Thorson@xxxxxxxxxxx: "Re: ip addr 10.0.0.254/24"
• Maybe in reply to: pkoltl@xxxxxx: "SNMP ports"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
udp port 161 is for snmpget, snmpset, and 162 is for snmp trap. Both
are destination port. Source port can be any above 1024. And snmp trap
is always one way. So the first entry doesn't make sense to me.

Ming
--- pkoltl@bcn.hu wrote:
> Hello All,
>
> Do SNMP agents send packets with source port 161 or 162? A lab
> solution
> contains following access list entries, but I don't understand every
> line.
>
> access-list 101 permit udp host 137.20.10.1 eq snmptrap 137.20.64.0
> 0.0.15.255
> access-list 101 permit udp host 137.20.10.1 host 137.20.40.17 eq
> snmptrap
> access-list 101 permit udp host 137.20.10.1 eq snmp 137.20.64.0
> 0.0.15.255
> access-list 101 permit udp host 137.20.10.1 host 137.20.40.17 eq snmp
>
> (The task was something like to allow only necessary SNMP traffic.)
> Please explain it to me. Thanks:
>
> Peter

• Next message: Dean Whitley: "RE: DLSW over Frame Relay"
• Previous message: Dan.Thorson@xxxxxxxxxxx: "Re: ip addr 10.0.0.254/24"
• Maybe in reply to: pkoltl@xxxxxx: "SNMP ports"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Sep 07 2002 - 19:48:21 GMT-3