Solved: UDP 2000

balla-zoltan · ‎02-21-2011

I have an interesting issue. The server guys use IBM's RSA card to remotely manage servers, install OS, etc. The interesting part is that the port requires UDP/TCP 2000, but it does not work and I don't see any drops in the logs. If they are on the same subnet that the servers are on, it works fine. If they change the port from 2000 to 5090 on the server everything works fine. One of the server guys told me that the port 2000 is sending some kind of telephony traffic, he could not explain it any better and it is being dropped by the firewalls because of the type of traffic. I thought that if the firewall drops any traffic and the logging is enabled it will show up in the log. We have a few ASA5550/5580 pairs and a PIX535 pair. Did anyone see this before?

Thanks

PAUL GILBERT ARIAS · ‎02-21-2011

UDP 2000 is used for Cisco SCCP (Skinny)

Check if your policy-map if there is an inspect skinny, for example:

policy-map global_policy

class inspection_default

inspect dns preset_dns_map

inspect ftp

inspect h323 h225

inspect h323 ras

inspect rsh

inspect rtsp

inspect esmtp

inspect sqlnet

inspect skinny

inspect sunrpc

inspect xdmcp

inspect netbios

inspect icmp

inspect http

inspect ipsec-pass-thru

inspect sip

inspect mgcp

If you have and you are not using Skinny then remove the inspect.

That might solve your problem

View solution in original post

PAUL GILBERT ARIAS · ‎02-21-2011