Solved

How do I open UDP port 123 thru the Cisco 1941 router

Posted on 2011-03-09
4
2,034 Views
Last Modified: 2012-05-11
I am new in cisco, and I have one question about open UDP port 123. I have a 1941 router. I need to open UDP port 123 for 64.147.116.229 to one of my internal server (IP 192.168.0.1). Do I use the following? Thank you in advance.

permit udp 64.147.116.229 192.168.0.1 eq 123
0
Comment
Question by:weikiiro
  • 3
4 Comments
 
LVL 3

Expert Comment

by:mrmozaffari
ID: 35088682
Correct ,But you also need to assign this access-list to an interface.
And also you have decide in which direction it has to assign.

As an example if your 64.147.116.229 is in the range for fast ethernet 0/1 and your Server 192.168.0.1 is in the range of Fast ethernet 0/0 then :

Conf t
ip access-list extended Test
exit
Interface fa0/1
access-group Test in

ctrl+z

Thats all.
0
 
LVL 3

Expert Comment

by:mrmozaffari
ID: 35088714
Sorry i have to correct my previous syntax :

Ip access-group Test in
0
 

Author Comment

by:weikiiro
ID: 35088931
ic, thank you for your help mrmozaffari. for permit udp 64.147.116.229 192.168.0.1 eq 123, should the external Ip go first or internal ip? I need to establish a 2 way communication.
0
 
LVL 3

Accepted Solution

by:
mrmozaffari earned 500 total points
ID: 35089050
You did it correctly ,Why ?
Oh just one :
To define a correct access list ; Your syntax is not correct,
Don't Forget Wild card or "Host"
Correct is :

permit udp 64.147.116.229 0.0.0.0 192.168.0.1 0.0.0.0 eq 123

OR

permit udp Host 64.147.116.229 0.0.0.0 Host 192.168.0.1 eq 123

They are same.



It is the structure of the Extended ACLs :

Permit/Deny Protocol [Source] [Destination]
or
for permit Rule :

Permit [protocol] [Source address] [Wild card mask] [eq] [port number] [Destination Address] [Wild card mask] [eq] [port number]

Best Regards,
Mozaffari.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Is this QoS Correct on this  CISCO 3825 Router 1 29
Access List 2 18
Cost effective dual wan w/ qos 5 22
Interface VLAN dependencies 6 28
If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
Have you experienced traffic destined through a Cisco ASA firewall disappears and you do not know if the traffic stops in the firewall or somewhere else? The solution is the capture feature. This feature was released in 6.2(1) and works in all firew…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

947 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now