From: James Matrisciano (jmatrisciano@kenttech.com)
Date: Fri Jun 17 2005 - 13:57:40 GMT-3
do not discount modular QoS with NBAR. Usering the match protocol command will allow you to match on traffic if you do not know the port.
jm
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
ccie2be
Sent: Friday, June 17, 2005 11:21 AM
To: Group Study
Subject: Selecting the correct protocol ports in acl's
Hi guys,
If I need to create an acl for a certain type of traffic, say, smtp, I
happen to know which ports to use.
In the case of smtp, traffic from the smtp server uses a source port of 25
and traffic to the smtp server uses a dest port of 25.
But, assuming I didn't know the specifics of a given protocol, can I
generalize that for this other protocol, it would work the same way as smtp?
IOW, if port X is the destination port used TO reach a given application,
then port X becomes the source for traffic FROM this application?
Does this generalization hold up equally well for UDP based apps as for TCP
apps?
TIA, Tim
This archive was generated by hypermail 2.1.4 : Wed Jul 06 2005 - 14:43:41 GMT-3