Port 1967

From: gladston@br.ibm.com
Date: Thu Jul 21 2005 - 10:08:23 GMT-3

• Next message: Guyler, Rik: "RE: I Failed for the 2nd time yesterday in Brussels, has the"
• Previous message: Gustavo Novais: "RE: Not so dumb ACL question [bcc][faked-from][bayes]"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

After pasting my configs, one of the routers started to log this:

*Mar 1 00:59:33: %SEC-6-IPACCESSLOGP: list 109 denied udp 148.5.5.1(1967) -> 150.100.2.254(57009), 1 packet

Looking for this port I found this:

1967, tcp/udp, sns-quote

It was no sense based on the services running on the rack I was using.

Then, before giving up, this site solved the question:

======================
A. The SAA control protocol is a proprietary protocol for initial exchange between the SAA source and the responder. With this exchange, the SAA source can specify which port the responder should listen to for a particular operation.

Note that this port is capable of listening to multiple operations, and will thus be disabled after the operation is completed. This will help to protect the end routers from Denial of Service attacks.

The control protocol uses port 1967.
======================

http://www.ciscopro.com/warp/public/cc/pd/iosw/prodlit/saage_qp.htm

So, if you are told to configure SAA and there is security features, be aware of the needed to allow SAA control port.

I am wondering why common port list pages does not include this information. Is SAA control port using a reserved port?

• Next message: Guyler, Rik: "RE: I Failed for the 2nd time yesterday in Brussels, has the"
• Previous message: Gustavo Novais: "RE: Not so dumb ACL question [bcc][faked-from][bayes]"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Sep 04 2005 - 17:00:30 GMT-3