Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
167
Views
0
Helpful
1
Replies

timed acl for a specific port

rnbhatija
Level 1
Level 1

‎01-13-2015 03:47 PM - edited ‎03-07-2019 10:12 PM

im looking into disabling a port that sites in the lobby, the port is connected to a voip phone, however after hours i want the port to stop all/any traffic

 

 

does this acl look right:

 

 

time-range lobby

periodic Monday 8:00 to Friday 16:30 

ip access-list extended lobby

permit tcp any any eq 38 time-range lobby

interface gigabitethernet 2/0/38

ip access-group lobby in

 

 

--------------------------

Labels:
0 Helpful
1 Reply 1

Bilal Nawaz
VIP Alumni
VIP Alumni

‎01-13-2015 04:37 PM

I would do it a little different - like this:

time-range lobby
 periodic weekdays 0:00 to 7:59
 periodic weekdays 16:31 to 23:59
 periodic weekend 0:00 to 23:59

!

ip access-list extended lobby

deny ip any any time-range lobby

!

interface gigabitethernet 2/0/38

ip access-group lobby in

 

Just make sure that time on the device is correct, and probably best to sync with NTP, correct time zone etc... 

This will deny traffic out of hours including the weekend.

hth

Bilal

Please rate useful posts & remember to mark any solved questions as answered. Thank you.
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card