Allan, I responded to your First post Already
Hello Allan, That is in FACT what you need to do, however be careful because the port for Gdoi (UDP 848) does not appear there as open port even if the router is the Key server. So if your router is key server or if it is running GET, you need to have that in mind. Mike Rojas. > From: [email protected] > To: [email protected] > Date: Tue, 9 Oct 2012 05:17:37 +0000 > CC: [email protected] > Subject: Re: [OSL | CCIE_Security] Control Plane protection host > > Can you elaborate pls Kings ? > > Sent from my iPhone > > On Oct 8, 2012, at 11:04 PM, "Kingsley Charles" > <[email protected]<mailto:[email protected]>> wrote: > > Yes, that command should help you. But remember that command will not display > all open ports. > > With regards > Kings > CCNA,CCSP,CCNP,CCIP,CCIE 35914 (Security) > > On Mon, Oct 8, 2012 at 11:13 PM, Castro, Allan > <<mailto:[email protected]>[email protected]<mailto:[email protected]>> > wrote: > Hello, > > Anyone can comment on this one? > > From: <mailto:[email protected]> > [email protected]<mailto:[email protected]> > > [mailto:<mailto:[email protected]>[email protected]<mailto:[email protected]>] > On Behalf Of Castro, Allan > Sent: jueves, 04 de octubre de 2012 04:58 p.m. > To: > '<mailto:[email protected]>[email protected]<mailto:[email protected]>' > > Subject: [OSL | CCIE_Security] Control Plane protection host > > Hello, > > > When the question says: > > Use control plane protection in order to block and log all connections to the > closed ports but make sure the traffic to/from the router still works. > > It is a good a approach to use the command > > show control-plane host open-ports to see what ports are listening on the > router and use these ports on the class-map with the match not port TCP/UDP > ## ??? > > Thanks > > > --------------------------------------------------------------------- > Allan Castro > > > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit <http://www.ipexpert.com> www.ipexpert.com<http://www.ipexpert.com> > > Are you a CCNP or CCIE and looking for a job? Check out > <http://www.PlatinumPlacement.com> > www.PlatinumPlacement.com<http://www.PlatinumPlacement.com> > > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com > > Are you a CCNP or CCIE and looking for a job? Check out > www.PlatinumPlacement.com
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
