Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1811
Views
0
Helpful
1
Replies

Block port TCP 5061 on L2 switch

Michael Turkstra
Level 1
Level 1

‎03-05-2015 12:08 PM - edited ‎03-07-2019 10:57 PM

Dear all

 

I need to block port 5061 TCP for a number of users.

When i want to do this in a 2960 switch and i want to apply it gives the error  %ERROR: Port-based ACLs are not supported with this image

 

my ACL is:

access-list 100 deny tcp any any eq 5061
access-list 100 permit ip any any

Interface fa0/1
access-list 100 in
%ERROR: Port-based ACLs are not supported with this image

 

the Main switch is a 3560.

I was thinking to add a ACL there on uplink interface ??


ip access-list extendend TEST
deny tcp host 192.168.1.1 eq 5061 any
permit ip any any

Interface fa0/1
ip access-group TEST in





Does anyone know what is the best option.

Best for me would be if i could block on interface of the 2960 switch.
Just need to block TCP 5061

 

Thanks!!

 

Labels:
0 Helpful
1 Reply 1

Leo Laohoo
Hall of Fame
Hall of Fame

‎03-05-2015 07:11 PM

Layer 2 switches don't know how to look at ports.  

 

You need to find a Layer 3 device, like a router or a Layer 3 core switch.


TCP 5061 = SIP (over TLS) protocol.  You sure you want to do this?

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card