On Wed, Feb 26, 2014 at 9:15 PM, Michael Ruetz <[email protected]> wrote: > ip access-list extended RTP > 10 permit udp any range 16384 32767 any range 16384 32767 <-- same range > src. and dst.??
Yes, RTP works both ways. > ip access-list extended SIGNALING > 10 permit tcp any any range 2000 2002 <-- three ports for SKINNY? That sounds wrong, AFAIK only 2000 is needed. > 20 permit tcp any any range 5060 5061 <-- two ports for SIP? Yes, standard and encrypted. > 21 permit udp any any range 5060 5061 <-- two ports for SIP? Same thing. > 30 permit tcp any any eq 1720 --> H.323 is clear > 40 permit tcp any any eq 2443 <-- Secure Signalling?? Yes, Secure SCCP. But IMHO, Cisco won't require us to know by heart exotic protocol port numbers like 2443; this isn't a voice exam. -Thomas _______________________________________________ Free CCIE R&S, Collaboration, Data Center, Wireless & Security Videos :: iPexpert on YouTube: www.youtube.com/ipexpertinc
