Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
407
Views
0
Helpful
1
Replies

Issues conenction through ACL

jameswysocki
Level 1
Level 1

‎10-20-2010 11:35 AM - edited ‎03-06-2019 01:38 PM

I have a question about ACLs. I have a 3750 switch doing base layer three routing and ACLing connections into my network from there’s on a port by port basis. Now it has become time that I need to connect to a server on the remote network.  Let’s just say I send a request to them to access port 21 they will respond on a port that will be unknown to me and the ACL would block it. What would be the best practice for this?

Thank you

Labels:
0 Helpful
1 Reply 1

Jon Marshall
Hall of Fame
Hall of Fame

‎10-20-2010 11:49 AM

You can either -

1) use the "established" keyword for the return traffic which works for TCP

2) use reflexive access-lists which support TCP/UDP/ICMP

3) use a stateful firewall which will automatically allow return traffic

4) write a rule in your inbound acl for the traffic eg.

access-list 101 permit tcp eq 21 any

Jon

0 Helpful
Customers Also Viewed These Support Documents