Re: how to not resolve service names?

slug420 · ‎02-10-2010

what is the command to stop the ASA from using common service names instead of ports? Like instead of showing "telnet" in an acl i want to see "23"

Also is there a cisco document that shows what ports it considers to be common services (and also shows the names that these common ports are replaced with?)

Kureli Sankar · ‎02-10-2010

question mark after the "eq" revealed the following:

ASA(config)#access-l test per tcp h 1.1.1.1 any eq

aol
bgp
chargen
cifs
citrix-ica
cmd
ctiqbe
daytime
discard
domain
echo
exec
finger
ftp
ftp-data
gopher
h323
hostname
http
https
ident
imap4
irc
kerberos
klogin
kshell
ldap
ldaps
login
lotusnotes
lpd
netbios-ssn
nfs
nntp
pcanywhere-data
pim-auto-rp
pop2
pop3
pptp
rsh
rtsp
sip
smtp
sqlnet
ssh
sunrpc
tacacs
talk
telnet
uucp
whois
www

I am not sure if there is a link for this.

I am not aware of an option to disable this either.

-KS

slug420 · ‎02-10-2010

I know what the list looks like....what i dont know if what port does it associate with uucp? ident? irc? rtsp? etc....

Kureli Sankar · ‎02-10-2010

right here: http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/ref_ports.html#wp1008329

Look for

TCP and UDP Ports

http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/ref_ports.html#wp1007738

-KS

how to not resolve service names?

TCP and UDP Ports

Nexus Dashboard / Nexus Dashboard Service API Documentation のアクセス方法

[ver 6.0] Service Graph PBR with ASAv 設定例

Loi sur les Services Numériques de l'Union Européenne (DSA)

A utilização do EVPN para serviços VPN em Service Providers

Rename ACI Fabric Name?