Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
361
Views
0
Helpful
1
Replies

'any' destination port on access-list

cisco_lite
Level 1
Level 1

‎01-03-2009 10:30 PM - edited ‎03-11-2019 07:32 AM

I am looking for an option to allow me using 'ANY' keyword for destination port on the extended access-list. With and without object-group, I don't see any such option on ASA. I can only see port-object range 0-65535 that can be used for this purpose. Is that how it should be ?

Labels:
0 Helpful
1 Reply 1

godinerik
Level 1
Level 1

‎01-03-2009 10:44 PM

Hi,

I'm going to assume here you're trying to allow either TCP or UDP connections, but not both.

In the case you'd like to allow TCP connections on any ports, without using an object-group you can do:

access-list acl-inbound extended permit tcp any any

In the above example, you would be allowing TCP connections from any source host to any destination hosts, regardless of what port they're coming from. Of course, source/destination can be replaced by IPs and tcp can be substitued with udp.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card