From: Sharma Sham Sunder (vMoksha) (ShamSunder.Sharma@UCB-Group.com)
Date: Tue Sep 28 2004 - 17:40:20 GMT-3
Mohamed,
Thanks for replying ....
we accepted that while coming back destination would be 2000 But i have
situation like... i am putting 2 access-list 111, 112 --IN& OUT on serial 0
interface of R1 router..
10.1.1.0/24-------e0 R1 s0-----------s0 R2 e0 -----20.1.1.0/24
access-list 112 is applied oubound -- want permit telnet,ftp to host
20.1.1.1 from 10.1.1.0 subnet and blocking all ports.
access-list 111 is applied inbound -- want to permit telnet,ftp to host
10.1.1.1 from 20.1.1.0 and blocking all ports.
I this situation ...then telnet,ftp should not be completed since all other
ports blocked in either sides ...
Regards
-----Original Message-----
From: mohamed_n@sifycorp.com [mailto:mohamed_n@sifycorp.com]
Sent: Tuesday, September 28, 2004 6:14 AM
To: ShamSunder.Sharma@ucb-group.com
Subject: Re: Application port reply ....
Yeah, it should be src-23 and dest 2000.
Thanks
Mohamed.
Quoting "Sharma Sham Sunder (vMoksha)" <ShamSunder.Sharma@UCB-Group.com>:
> Hi
>
> Suppose IP 192.168.10.1 is trying to do the telnet to a IP
> 10.10.10.10...
> ports details will be like..
>
>
> while going from 192.168.10.1 to 10.10.10.10
>
> Sourec IP source Port Desinations
> IP Destination Port
> 192.168.10.1 anyport above 1024 (say 2000) 10.10.10.10
> 23
>
> while coming back from 10.10.10.10 to 192.168.10.1 what would be the
> source
> & Destinations ports---------- ?????
> Sourec IP source Port Desinations IP
> Destination Port
> 10.10.10.10 23 ???? 192.168.10.1 2000
> ????
>
>
> Regards
>
>
> ---------------------------------------------------------
> Legal Notice: This electronic mail and its attachments are intended
> solely
> for the person(s) to whom they are addressed and contain information
> which
> is confidential or otherwise protected from disclosure, except for the
> purpose they are intended to. Dissemination, distribution, or
> reproduction
> by anyone other than their intended recipients is prohibited and may be
> illegal. If you are not an intended recipient, please immediately inform
> the
> sender and send him/her back the present e-mail and its attachments and
> destroy any copies which may be in your possession.
> ---------------------------------------------------------
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
---------------------------------------------------------
Legal Notice: This electronic mail and its attachments are intended solely
for the person(s) to whom they are addressed and contain information which
is confidential or otherwise protected from disclosure, except for the
purpose they are intended to. Dissemination, distribution, or reproduction
by anyone other than their intended recipients is prohibited and may be
illegal. If you are not an intended recipient, please immediately inform the
sender and send him/her back the present e-mail and its attachments and
destroy any copies which may be in your possession.
---------------------------------------------------------
This archive was generated by hypermail 2.1.4 : Fri Oct 01 2004 - 15:00:50 GMT-3