05-15-2017 10:58 PM - edited 03-05-2019 08:32 AM
Can someone explain the major difference between the below commands:
deny tcp host x.x.x.x any
deny ip host x.x.x.x any
Thanks,
James..
05-15-2017 11:09 PM
James,
IP works at the network layer (3) of the OSI model, TCP at the transport layer (4). That means:
deny ip host x.x.x.x any
will block anything originating from the specified host to anywhere.
TCP is used by e.g. HTTP, HTTPs, FTP, SMTP, Telnet. You can block these selectively and still allow e.g. UDP (which operates at the same layer as TCP), such as DNS, DHCP, TFTP, SNMP, RIP, VOIP..
So in short:
deny ip host x.x.x.x any --> blocks everything
deny tcp host x.x.x.x any --> blocks only TCP, but allows UDP
05-15-2017 11:37 PM
Thanks George for the clarification..
James..
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide