Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Cisco Access-List Ghost calls

Posted on 2016-08-11
2
39 Views
Last Modified: 2016-08-30
I have created an access-list to prevent ghost calls but it doesn't seems to work. I only want receive SIP traffice from a specific IP address.

Access-List:

access-list 105 permit udp host 178.217.82.83 eq 5060 any log
access-list 105 permit tcp host 178.217.82.83 eq 5060 any log
access-list 105 deny   udp any range 5060 5080 any log
access-list 105 deny   tcp any range 5060 5080 any log
access-list 105 permit ip any any

interface Dialer1
 ip address negotiated
 ip access-group 105 in

Any ideas?
0
Comment
Question by:emieldmz
  • 2
2 Comments
 
LVL 45

Accepted Solution

by:
Craig Beck earned 500 total points (awarded by participants)
ID: 41753178
You're not restricting destination ports at your end coming in to your dialer interface.

Try...

access-list 105 permit udp host 178.217.82.83 eq 5060 any log
access-list 105 permit tcp host 178.217.82.83 eq 5060 any log
access-list 105 deny   udp any any range 5060 5080 log
access-list 105 deny   tcp any any range 5060 5080 log
access-list 105 permit ip any any

Open in new window

1
 
LVL 45

Expert Comment

by:Craig Beck
ID: 41776026
Best answer chosen
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

791 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question