Hi Thomas, Thx. for fast responding! :) Have a nice evening ... Mike
Am 26.02.14 21:35 schrieb "Thomas Perrier" unter <[email protected]>: >On Wed, Feb 26, 2014 at 9:15 PM, Michael Ruetz <[email protected]> >wrote: >> ip access-list extended RTP >> 10 permit udp any range 16384 32767 any range 16384 32767 <-- same >>range >> src. and dst.?? > >Yes, RTP works both ways. > >> ip access-list extended SIGNALING >> 10 permit tcp any any range 2000 2002 <-- three ports for SKINNY? > >That sounds wrong, AFAIK only 2000 is needed. > >> 20 permit tcp any any range 5060 5061 <-- two ports for SIP? > >Yes, standard and encrypted. > >> 21 permit udp any any range 5060 5061 <-- two ports for SIP? > >Same thing. > >> 30 permit tcp any any eq 1720 --> H.323 is clear >> 40 permit tcp any any eq 2443 <-- Secure Signalling?? > >Yes, Secure SCCP. > >But IMHO, Cisco won't require us to know by heart exotic protocol port >numbers like 2443; this isn't a voice exam. > >-Thomas _______________________________________________ Free CCIE R&S, Collaboration, Data Center, Wireless & Security Videos :: iPexpert on YouTube: www.youtube.com/ipexpertinc
