Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
223
Views
0
Helpful
2
Replies

denies not working

ericw
Level 1
Level 1

‎08-29-2005 09:56 AM - edited ‎03-09-2019 12:16 PM

I have set up explicit denies for tcp/udp ports 1067 and 1068 using the conduit command. My syslog is still showing that connections are being made. What did I miss?

Labels:
0 Helpful
2 Replies 2

jackko
Level 7
Level 7

‎08-29-2005 05:33 PM

conduit works in order, please verify if there is any conduit before would have permit the traffic

also acl will take in action before any conduit, please verify it there is any acl being applied

perhaps post the config

0 Helpful

ericw
Level 1
Level 1
In response to jackko

‎08-30-2005 08:11 AM

Below are the top 4 conduit listed they are also the ones in question that I keep seeing connections to.

conduit deny tcp any eq 1067 any

conduit deny udp any eq 1067 any

conduit deny tcp any eq 1068 any

conduit deny udp any eq 1068 any

I have the following acl's setup:

access-list 101 permit ip 10.0.0.0 255.0.0.0 192.168.2.0 255.255.255.0

access-list out_in deny tcp any eg ftp

access-list out_in deny tcp any eg 1067

access-list out_in deny udp any eg 1067

access-list out_in deny tcp any eg 1068

access-list out_in deny udp any eg 1068

I don't understand.

0 Helpful
Customers Also Viewed These Support Documents