Solved

How do I open UDP port 123 thru the Cisco 1941 router

Posted on 2011-03-09
4
2,016 Views
Last Modified: 2012-05-11
I am new in cisco, and I have one question about open UDP port 123. I have a 1941 router. I need to open UDP port 123 for 64.147.116.229 to one of my internal server (IP 192.168.0.1). Do I use the following? Thank you in advance.

permit udp 64.147.116.229 192.168.0.1 eq 123
0
Comment
Question by:weikiiro
  • 3
4 Comments
 
LVL 3

Expert Comment

by:mrmozaffari
ID: 35088682
Correct ,But you also need to assign this access-list to an interface.
And also you have decide in which direction it has to assign.

As an example if your 64.147.116.229 is in the range for fast ethernet 0/1 and your Server 192.168.0.1 is in the range of Fast ethernet 0/0 then :

Conf t
ip access-list extended Test
exit
Interface fa0/1
access-group Test in

ctrl+z

Thats all.
0
 
LVL 3

Expert Comment

by:mrmozaffari
ID: 35088714
Sorry i have to correct my previous syntax :

Ip access-group Test in
0
 

Author Comment

by:weikiiro
ID: 35088931
ic, thank you for your help mrmozaffari. for permit udp 64.147.116.229 192.168.0.1 eq 123, should the external Ip go first or internal ip? I need to establish a 2 way communication.
0
 
LVL 3

Accepted Solution

by:
mrmozaffari earned 500 total points
ID: 35089050
You did it correctly ,Why ?
Oh just one :
To define a correct access list ; Your syntax is not correct,
Don't Forget Wild card or "Host"
Correct is :

permit udp 64.147.116.229 0.0.0.0 192.168.0.1 0.0.0.0 eq 123

OR

permit udp Host 64.147.116.229 0.0.0.0 Host 192.168.0.1 eq 123

They are same.



It is the structure of the Extended ACLs :

Permit/Deny Protocol [Source] [Destination]
or
for permit Rule :

Permit [protocol] [Source address] [Wild card mask] [eq] [port number] [Destination Address] [Wild card mask] [eq] [port number]

Best Regards,
Mozaffari.
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
shrewsoft VPN client and DNS 6 48
Cisco MAC address finding 5 49
NSD FAIL 2 25
Cisco Any Connect Client 5 16
Have you experienced traffic destined through a Cisco ASA firewall disappears and you do not know if the traffic stops in the firewall or somewhere else? The solution is the capture feature. This feature was released in 6.2(1) and works in all firew…
In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now