Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
520
Views
0
Helpful
1
Replies

ACL

dsandre-toh
Level 1
Level 1

‎04-07-2011 06:53 AM - edited ‎03-11-2019 01:18 PM

What is the difference in the 2 entries below - it must be significant, else it wouldn't be in the Getvpn documentation.

deny tcp any any eq ssh

deny tcp any eq ssh any

Labels:
0 Helpful
1 Reply 1

Shrikant Sundaresh
Cisco Employee
Cisco Employee

‎04-07-2011 07:16 AM

deny tcp any any eq ssh

deny tcp connections from any ip any port, to the ssh port of any ip. Basically block outgoing ssh connections

deny tcp any eq ssh any

deny tcp connections from any ip ssh port, to any ip nay port. Basically block replies to ssh connections

Hope this helps.

-Shrikant

P.S: Please mark this question resolved if it has been answered. Do rate helpful posts. Thanks.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card