Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- :
- About Khagler24
Stats
Member since
08-03-2012
9
Posts
0
Helpful
0
Solutions
Created by
Khagler24
in Other Network Architecture Subjects
in Other Network Architecture Subjects
08-01-2014
08:20 AM
08-01-2014
08:20 AM
nareshmahato, For ASAs, use sh asp table sockets
... View more
03-25-2013
07:06 AM
Hi Rob, Unfortunately no, I have not come across an answer for UDP/10000. I had suspected that it was Cisco's Stack Discovery Protocol until you mentioned having this same issue on a 3560x. Guess I'll open a TAC case to find out what it is. I'll post here if/when I here something back from Cisco. Thanks Ken
... View more
Created by
Khagler24
in Other Network Architecture Subjects
in Other Network Architecture Subjects
10-30-2012
02:55 PM
10-30-2012
02:55 PM
Tony Do you know what feature in the 12.4(x)T code supports "sh control-plane host open-ports"?
... View more
09-28-2012
11:05 AM
Can anyone confirm if Cisco Stack Discovery Protocol uses, by default, UDP/10,000? I believe SDP is the service behind this port, though I've not come across any documentation that covers this aspect of SDP.
... View more
08-31-2012
03:24 PM
Afternoon all, I've several production Catalyst switches that are listening on the same IPv4 and IPv6 ports. The problem is I don't want the switches listening on the IPv6 ports. OUTPUT FROM SWITCH: switch#sh ip sock Proto Remote Port Local Port In Out Stat TTY OutputIF 17 --listen-- 192.168.1.1 123 0 0 1001 0 17(v6) --listen-- --any-- 123 0 0 20001 0 17 --listen-- 192.168.1.1 1975 0 0 11 0 17 0.0.0.0 0 192.168.1.1 2228 0 0 211 0 17 0.0.0.0 0 192.168.1.1 67 0 0 2211 0 17 192.168.1.2 63706 192.168.1.1 161 0 0 1001 0 17 --listen-- 192.168.1.1 162 0 0 1011 0 17 --listen-- 192.168.1.1 52919 0 0 1011 0 17(v6) --listen-- --any-- 161 0 0 20001 0 17(v6) --listen-- --any-- 162 0 0 20011 0 17(v6) --listen-- --any-- 54464 0 0 20001 0 17 192.168.1.2 514 192.168.1.1 61483 0 0 400201 0 switch# As far as I know, this IOS code DOES NOT support IPv6. Code: c3560-ipbasek9-mz.122-58.SE2.bin Hardware: WS-C3560G-24PS-S switch#sh ipv6 route % Specified IPv6 routing table does not exist switch#sh ipv6 protocols switch# Does anyone have any idea how to shut down these listening ports? I also have a few production switches listening on UDP/10000 and I cannot determine why this port is listening. OUTPUT FROM SWITCH: switch#sh ip sock Proto Remote Port Local Port In Out Stat TTY OutputIF 17 --listen-- 192.168.1.1 10000 0 0 11 0 17 192.168.1.2 162 192.168.1.1 60310 0 0 0 0 17 0.0.0.0 0 192.168.1.1 2228 0 0 211 0 17 0.0.0.0 0 192.168.1.1 67 0 0 2211 0 17 192.168.1.2 63706 192.168.1.1 161 0 0 1001 0 17 --listen-- 192.168.1.1 162 0 0 1011 0 17 --listen-- 192.168.1.1 58064 0 0 1011 0 17 --listen-- --any-- 161 0 0 20001 0 17 --listen-- --any-- 162 0 0 20011 0 17 --listen-- --any-- 60653 0 0 20001 0 17 --listen-- 192.168.1.1 123 0 0 1 0 17 192.168.1.2 514 192.168.1.1 61686 0 0 400201 0 switch# Code: c3750-ipbasek9-mz.122-55.SE6.bin Hardware: WS-C3750G-12S-S I've seen where UDP/10000 is Network Data Management Protocol and is related to Storage networks, but I've also seen where UDP/10000 is the default port for IPSEC data. I don't believe UDP/10000 is related to either NDMP or IPSEC data, though I could be very wrong. Any help is very appreciated.
... View more
Labels:
08-30-2012
02:53 PM
Hi Alessio Thanks for the reply and the great link. Unfortuately the command didn't take. switch(config)#no ip forward-protocol udp bootpc UDP port 68 not found to delete switch#sh ip sock Proto Remote Port Local Port In Out Stat TTY OutputIF 17 --listen-- 192.168.1.1 68 0 0 1 0 17 0.0.0.0 0 192.168.1.1 2228 0 0 211 0 17 --listen-- 192.168.1.1 161 0 0 1001 0 17 --listen-- 192.168.1.1 162 0 0 1011 0 17 --listen-- 192.168.1.1 56874 0 0 1011 0 17 --listen-- --any-- 161 0 0 20001 0 17 --listen-- --any-- 162 0 0 20011 0 17 --listen-- --any-- 52946 0 0 20001 0 17 --listen-- 192.168.1.1 123 0 0 1 0 17 192.168.1.2 514 192.168.1.1 57436 0 0 400211 0 switch# Also, I don't know if it makes any difference or not, but this is a standalone test switch with no connections to anything else. Thanks
... View more
08-30-2012
01:39 PM
Anyone know of a way to disable UDP/68/BOOTPc on a catalyst switch? I was able to turn off UDP/67/BOOTPs. Just wondering if I can do the same with UDP/68. Using a 356G-24-TS running IOS 12.2(50)SE3 code. OUTPUT FROM SWITCH switch#sh ip sock Proto Remote Port Local Port In Out Stat TTY OutputIF 17 --listen-- 192.168.1.1 68 0 0 1 0 17 0.0.0.0 0 192.168.1.1 2228 0 0 211 0 17 --listen-- 192.168.1.1 161 0 0 1001 0 17 --listen-- 192.168.1.1 162 0 0 1011 0 17 --listen-- 192.168.1.1 56874 0 0 1011 0 17 --listen-- --any-- 161 0 0 20001 0 17 --listen-- --any-- 162 0 0 20011 0 17 --listen-- --any-- 52946 0 0 20001 0 17 --listen-- 192.168.1.1 123 0 0 1 0 17 192.168.1.2 514 192.168.1.1 57436 0 0 400211 0 switch# "flash:/c3560-ipbasek9-mz.122-50.SE3.bin" WS-C3560G-24TS-S Thanks in advance
... View more
Labels:
08-03-2012
10:45 AM
Thanks karsten for your time and knowledge. This is exactly what I was looking for.
... View more
08-03-2012
06:35 AM
Cisco sent a letter addressing the lack of ability in enforcing a minimum password length on IOS devices and ASAs. In the letter, Cisco states that "With the shipping versions of Cisco IOS as of the current date, the native capabilities allow for encrypting the password as well as specifying a minimum length." In regards to specifying a minimum length, I believe Cisco is referring to Autosecure for routers. But I don't know of any way to set a minimum password length on switches, even though Cisco states that it is natively support by IOS. I also know of no way to do this with ASAs. I know we can enforce several policies with TACACS, but we're looking for device IOS capabilities. I'd also like to know what is meant by a "shipping version" of IOS. I'd always thought that a device came with a base IOS with a base license. Thanks for the time and help.
... View more
Labels:
Public Statistics
| Date Registered | 08-03-2012 06:13 AM |
| Date Last Visited | 08-03-2018 03:00 AM |
| Total Messages Posted | 9 |
