[c-nsp] New with Cisco

Jason Lixfeld jason at lixfeld.ca
Wed Jan 28 20:45:05 EST 2009 

Hi Dan,

It looks as though the ports may be open, but to be sure, we'll need  
to know what interfaces the access-lists are applied to.

Can you send the output of the following commands:

show ip interface brief
show run | include interface|access-group|ip address|nat
show run | include nat

Also, do you need to make outbound connections to the Internet to  
ports 8443/T and 8443/U, or does the Internet need to create incoming  
connections to those ports to a host on your network?

On 28-Jan-09, at 8:20 PM, Dan Ciora wrote:

> Hello,
> My name is Dan and I just start working with Cisco Router.
> We have a router 800 Series that was working perfect. We had to  
> upgrade
> the point of sale application, and the new version needs to comunicate
> in through the router on the port: TCP8443 and UDP8443.
>
> In have the acces-lists in the runnung-configuration file:
> < 
> !----------------------------------------------------------------------
> ----------------------------------->
> !
> access-list 111 deny   ip host 192.168.101.1 any
> access-list 111 permit ip 192.168.101.0 0.0.0.255 any
> access-list 130 deny   udp any any eq tftp
> access-list 130 deny   tcp any any eq 135
> access-list 130 deny   udp any any eq 135
> access-list 130 deny   tcp any any eq 137
> access-list 130 deny   udp any any eq netbios-ns
> access-list 130 deny   udp any any eq netbios-dgm
> access-list 130 deny   tcp any any eq 138
> access-list 130 deny   tcp any any eq 139
> access-list 130 deny   udp any any eq netbios-ss
> access-list 130 deny   tcp any any eq 193
> access-list 130 deny   tcp any any eq 445
> access-list 130 deny   tcp any any eq 593
> access-list 130 deny   tcp any any eq 707
> access-list 130 deny   udp any any range 995 999
> access-list 130 deny   tcp any any eq 1434
> access-list 130 deny   udp any any eq 1434
> access-list 130 deny   tcp any any range 3127 3199
> access-list 130 deny   tcp any range 3127 3199 any
> access-list 130 deny   tcp any any eq 4444
> access-list 130 deny   udp any any eq 8998
> access-list 130 permit ip any any
> access-list 199 permit udp any any eq bootpc
> access-list 199 permit udp any any eq bootps
> access-list 199 permit udp any eq bootps any
> access-list 199 permit udp any eq bootpc any
> !
>
> < 
> !----------------------------------------------------------------------
> ----------------------------------->
>
> Can anybody  tell me if the  ports TCP8443 and UDP8443 are open ?
>
> Thank you very much,
> Dan
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>

More information about the cisco-nsp mailing list