We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Course Of The Month
4 days, 15 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
How do I open UDP port 123 thru the Cisco 1941 router
Posted on 2011-03-09
I am new in cisco, and I have one question about open UDP port 123. I have a 1941 router. I need to open UDP port 123 for 64.147.116.229 to one of my internal server (IP 192.168.0.1). Do I use the following? Thank you in advance.
permit udp 64.147.116.229 192.168.0.1 eq 123
permit udp 64.147.116.229 192.168.0.1 eq 123
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3
4 Comments
Correct ,But you also need to assign this access-list to an interface.
And also you have decide in which direction it has to assign.
As an example if your 64.147.116.229 is in the range for fast ethernet 0/1 and your Server 192.168.0.1 is in the range of Fast ethernet 0/0 then :
Conf t
ip access-list extended Test
exit
Interface fa0/1
access-group Test in
ctrl+z
Thats all.
And also you have decide in which direction it has to assign.
As an example if your 64.147.116.229 is in the range for fast ethernet 0/1 and your Server 192.168.0.1 is in the range of Fast ethernet 0/0 then :
Conf t
ip access-list extended Test
exit
Interface fa0/1
access-group Test in
ctrl+z
Thats all.
ic, thank you for your help mrmozaffari. for permit udp 64.147.116.229 192.168.0.1 eq 123, should the external Ip go first or internal ip? I need to establish a 2 way communication.
You did it correctly ,Why ?
Oh just one :
To define a correct access list ; Your syntax is not correct,
Don't Forget Wild card or "Host"
Correct is :
permit udp 64.147.116.229 0.0.0.0 192.168.0.1 0.0.0.0 eq 123
OR
permit udp Host 64.147.116.229 0.0.0.0 Host 192.168.0.1 eq 123
They are same.
It is the structure of the Extended ACLs :
Permit/Deny Protocol [Source] [Destination]
or
for permit Rule :
Permit [protocol] [Source address] [Wild card mask] [eq] [port number] [Destination Address] [Wild card mask] [eq] [port number]
Best Regards,
Mozaffari.
Oh just one :
To define a correct access list ; Your syntax is not correct,
Don't Forget Wild card or "Host"
Correct is :
permit udp 64.147.116.229 0.0.0.0 192.168.0.1 0.0.0.0 eq 123
OR
permit udp Host 64.147.116.229 0.0.0.0 Host 192.168.0.1 eq 123
They are same.
It is the structure of the Extended ACLs :
Permit/Deny Protocol [Source] [Destination]
or
for permit Rule :
Permit [protocol] [Source address] [Wild card mask] [eq] [port number] [Destination Address] [Wild card mask] [eq] [port number]
Best Regards,
Mozaffari.
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
For months I had no idea how to 'discover' the IP address of the other end of a link (without asking someone who knows), and it drove me batty.
Think about it. You can't use Cisco Discovery Protocol (CDP) because it's not implemented on the ASAs.…
During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses
Course of the Month4 days, 15 hours left to enroll
Earn Certification
Cisco CCNA R&S: ICND2 v3
$197.00$177.30
Earn Certification
Cisco CCENT R&S: ICND1 v3
$197.00$177.30
688 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.