Create Cisco ACL to block incoming RDP & SNMP.
Posted on 2006-03-24
We just recently added a new clinic/site to our practice, but I have little or no say in their infrastructure. (they have separate IT staff) I've caught them a couple times running snmp scans & trying to rdp into our servers. I want to setup our ACL to block snmp inbound from them & rdp. Details below:
My Network (10.0.1.0) <-> Clinic Router(184.108.40.206) <-> Clinic Network (192.239.x.x)
ip address 10.128.64.34 255.255.255.252
ip nat outside
ip address 220.127.116.11 255.255.255.0
ip nat inside
ip nat pool Clinic 10.1.48.10 10.1.48.254 netmask 255.255.255.0
ip nat inside source list 110 pool Clinic
access-list 110 permit ip 18.104.22.168 0.0.0.255 10.0.1.0 0.0.0.255
access-list 110 permit icmp 22.214.171.124 0.0.0.255 10.0.1.0 0.0.0.255
Thanks for the help!