Extended ACL Protocol Number list?

brasso_42 · ‎11-29-2012

Hi

Can any one point me to a list of Protocol Number with their name and descriptions for use in extended ACLs

In particular I want to deny CDP, but a full list would be very useful for future reference.

Many thanks

Si

johnlloyd_13 · ‎11-29-2012

hi si,

i've had this bookmarked when doing my ACLs (and NAT). hope you'll also find it useful.

http://www.iana.org/assignments/service-names-port-numbers/service-names-port-numbers.xml

Muhammad Thanveer · ‎11-29-2012

Hi,

For cdp please refer

http://www.cisco.com/en/US/docs/ios/12_1/configfun/configuration/guide/fcd301c.html#wp1001030

CDP is cisco proprietary protocol and runs over the data link layer only. Therefore, two systems that support different network-layer protocols can learn about each other.

Enabling CDP on a Local Router

CDP is enabled on Cisco routers by default. If you prefer not to use the CDP device discovery capability, you can disable it with the no cdp run command.

To reenable CDP after disabling it, use the following command in global configuration mode:


Command	Purpose
cdp run	Enable CDP

you may also disable it by going to interface level and type no cdp enable and to reenable it type cdp enable

example

Enabling CDP on an Interface

CDP is enabled by default on all supported interfaces (except for Frame Relay multipoint subinterfaces) to send and receive CDP information. However, some interfaces, such as ATM interfaces, do not support CDP.

You can disable CDP on an interface which supports CDP with the no cdp enable command.

To reenable CDP on an interface after disabling it, use the following command in interface configuration mode:


Command	Purpose
cdp enable	Enables CDP on an interface.

Please rate helpful posts

Thanks

Tanveer Muhammad