Solved

icmp ,snmp

Posted on 2009-04-01
2
773 Views
Last Modified: 2012-05-06
Hi,

Can any one explain me the ports numbers used for icmp both for echo request and reply

Any standard piece of code for blocking echo request and echo reply ;please help with the code for both router and pix;

Please help with the port for snmp also

thx
0
Comment
Question by:phoenix26
2 Comments
 
LVL 43

Accepted Solution

by:
JFrederick29 earned 500 total points
ID: 24048858
Here is a good reference for ICMP type messages:

http://www.iana.org/assignments/icmp-parameters

To block ICMP echo and echo reply (inbound I assume):

Router:

access-list 150 deny icmp any any echo
access-list 150 deny icmp any any echo-reply
access-list 150 permit ip any any    <--add if you are allowing everything by default

int <wan interface>
ip access-group 150 in

PIX:

access-list outside_access_in extended deny icmp any any echo
access-list outside_access_in extended deny icmp any any echo-reply
access-group outside_access_in in interface outside


SNMP polling uses UDP 161
SNMP Traps use UDP 162
0
 

Author Closing Comment

by:phoenix26
ID: 31565653
Excellent feedback Thanks a lot
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How to configure this IP Address to my firewall 15 105
Sonicwall blocks a site 49 75
Looking for open port with Telnet 5 56
Dell Powerconnect Switch lost username/password 2 37
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now