From: Scott Morris (swm@emanon.com)
Date: Sun Nov 19 2006 - 03:47:07 ART
Port 113 is for ident. Can be an irritating little feature at times. :)
Search on "resetinbound" on the documentation and I think you'll find a
better command to suit your needs.
Scott Morris, CCIE4 (R&S/ISP-Dial/Security/Service Provider) #4713, JNCIE
#153, CISSP, et al.
CCSI/JNCI-M/JNCI-J
IPExpert VP - Curriculum Development
IPExpert Sr. Technical Instructor
smorris@ipexpert.com
http://www.ipexpert.com
-----Original Message-----
From: Lab Rat #109385382 [mailto:techlist01@gmail.com]
Sent: Saturday, November 18, 2006 10:53 PM
To: cisco@groupstudy.com; ccielab@groupstudy.com; security@groupstudy.com
Subject: PIX Established Question
If I had a question that stated "users report that returning SMTP traffic
sent from inside the PIX is slow or not even communicating correctly. After
investigating, you realize that the SMTP traffic is returning on TCP port
113."
What would be the appropriate "established" command syntax?
I would say "established tcp 0 25 permitto tcp 113 permitfrom tcp 0"
Is that what you would say?
Thanks,
Ed
-- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.5.430 / Virus Database: 268.14.7/537 - Release Date: 11/17/2006 5:56 PM-- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.5.430 / Virus Database: 268.14.7/537 - Release Date: 11/17/2006 5:56 PM
This archive was generated by hypermail 2.1.4 : Fri Dec 01 2006 - 08:05:47 ART