Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
1638
Views
5
Helpful
1
Replies

RPC dynamic filter

chucktiede
Level 1
Level 1

‎01-21-2011 07:38 AM - edited ‎03-11-2019 12:38 PM

I am looking to see if the Cisco ASA 5500 platform running ver 8.2 has support for RPC dynamic port filtering? So basically can I enable TCP 135 in an ACL and will the application policy read the RPC calls and dynamically open the ports being set in the intial conversation much like it does for FTP protocol?

Labels:
0 Helpful
1 Reply 1

mirober2
Cisco Employee
Cisco Employee

‎01-21-2011 08:44 AM

Hi Chuck,

Yes, this is done with the 'inspect dcerpc' command. Here is an example:

policy-map global_policy
class inspection_default

     inspect dcerpc

service-policy global_policy global

Here is the command reference:

http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/i2.html#wp1734557

Hope that helps.

-Mike

Review Cisco Networking for a $25 gift card
Top