Hi Folks,
I am attempting to permit inbound WoL packets from any source on the Internuts for UDP port 9 only.I've looked at a few posts here, but would appreciate clarification for the following scenario:
Device: Cisco 877
External Interface: Di0 IP Add 100.1.1.1 255.255.255.252
Inbound WAN Access-List: InterPr0n
Internal Int: BVI1 IP Add 192.168.0.254 255.255.255.0
Outbound Interal Access-List: LAN
Acess-List for Directed BroadCasts: 150
access-list 150 permit udp any any eq 9
Questions:
1. Which interface(s) do I put the 'ip directed broadcast 150' command?
2. Do I need to also mod the InterPr0n ACL to accept upd 9 traffic from any any?
3. Do I need a NAT statement to the broadcast addy?
4. *** Edited by _alias99 ***
5. I fantasize that acl 150 is meant used to evaluate traffic hitting the WAN port. Is that right (so I could use it to limit the public addresses that are allowed to send the WoL packet/broadcats)?
6. Do I use the ip help-address? Some examples I've seen suggest it. If so what interface and what IP? I'm guess it would be di0 and 192.168.0.255.
Thanks mucho-man-lots!
J
I am attempting to permit inbound WoL packets from any source on the Internuts for UDP port 9 only.I've looked at a few posts here, but would appreciate clarification for the following scenario:
Device: Cisco 877
External Interface: Di0 IP Add 100.1.1.1 255.255.255.252
Inbound WAN Access-List: InterPr0n
Internal Int: BVI1 IP Add 192.168.0.254 255.255.255.0
Outbound Interal Access-List: LAN
Acess-List for Directed BroadCasts: 150
access-list 150 permit udp any any eq 9
Questions:
1. Which interface(s) do I put the 'ip directed broadcast 150' command?
2. Do I need to also mod the InterPr0n ACL to accept upd 9 traffic from any any?
3. Do I need a NAT statement to the broadcast addy?
4. *** Edited by _alias99 ***
5. I fantasize that acl 150 is meant used to evaluate traffic hitting the WAN port. Is that right (so I could use it to limit the public addresses that are allowed to send the WoL packet/broadcats)?
6. Do I use the ip help-address? Some examples I've seen suggest it. If so what interface and what IP? I'm guess it would be di0 and 192.168.0.255.
Thanks mucho-man-lots!
J
Learn from the best
Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.
Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 7 Comments.
Try for 7 days”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.
Our community of experts have been thoroughly vetted for their expertise and industry experience.