How do I configre an access list such that it only allow users to ftp out,
but not any ftp in. Thanks.
_
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.
Share information about yourself, create
Wesson" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: ftp out
Date: Tue, 05 Sep 2000 19:23:03 GMT
How do I configre an access list such that it only allow users to ftp out,
but not any ftp in. Thanks.
_
Get Your Private
To: [EMAIL PROTECTED]
Subject: ftp out
Date: Tue, 05 Sep 2000 19:23:03 GMT
How do I configre an access list such that it only allow users to ftp out,
but not any ftp in. Thanks.
_
Get Your Private, Free E-mail from MSN Hot
Title: RE: ftp out
! Allow any internal connection back in
access-list 101 permit tcp any any established
! Allow FTP for non-passive ftp modes
access-list 101 permit tcp any eq ftp-data gt 1024
access-list 101 deny tcp any any
-Original Message-
From: SH Wesson [mailto:[EMAIL
PROTECTED]
Subject: Re: ftp out
Access lists are applied in one direction or the other - in, or out. So you
are probably looking at an access list that is applied to inbound traffic,
blocking incoming ftp requests.
A very rudimentary access list entry, that blocks ftp from any source to any
Just tried this with my home lab which has a couple of routers and subnets
on it. I'm not sure if the ftp-data port is necessary. The list seemed to
do its job though.
Extended IP access list 169
permit tcp any any eq ftp established
permit tcp any any eq ftp-data established
deny
6 matches
Mail list logo