TFTP - Trivial FTP
|
IP/Port Match
|
permit udp 64.202.160.0 0.0.1.255 eq 69 any
permit udp 64.202.160.0 0.0.1.255 any eq 69
|
NQ_CPU_HOST_Q
|
TELNET
|
IP/Port Match
|
permit tcp 169.223.252.0 0.0.3.255 host 169.223.253.1 eq
telnet
permit tcp 169.223.252.0 0.0.3.255 eq telnet host
169.223.253.1
|
NQ_CPU_CONTROL_Q
|
NTP - Network Time Protocol
|
IP/Port Match
|
permit udp 169.223.252.0 0.0.3.255 host 169.223.253.1 eq ntp
permit udp 169.223.252.0 0.0.3.255 eq ntp host 169.223.253.1
|
NQ_CPU_HOST_Q
|
FTP - File Transfer Protocol
|
IP/Port Match
|
permit tcp host <FTP server> eq ftp <loopback
block>
permit tcp host <FTP server> <loopback block> eq
ftp
|
NQ_CPU_HOST_Q
|
SNMP - Simple Network Management Protocol
|
IP/Port Match
|
permit udp 169.223.252.0 0.0.3.255 host 169.223.253.1 eq snmp
permit udp 169.223.252.0 0.0.3.255 eq snmp host 169.223.253.1
|
NQ_CPU_HOST_Q
|
TACACS - Terminal Access Controller Access-Control System
|
IP/Port Match
|
permit tcp 169.223.252.0 0.0.3.255 host 169.223.253.1 eq
tacacs
permit tcp 169.223.252.0 0.0.3.255 eq tacacs host
169.223.253.1
permit udp 169.223.252.0 0.0.3.255 host 169.223.253.1 eq
tacacs
permit udp 169.223.252.0 0.0.3.255 eq tacacs host
169.223.253.1
|
NQ_CPU_HOST_Q
|
FTP-DATA
|
IP/Port Match
|
permit tcp any any eq 20
permit tcp any eq 20 any
permit udp any any eq 20
permit udp any eq 20 any
|
NQ_CPU_HOST_Q
|
HTTP - Hypertext Transfer Protocol
|
IP/Port Match
|
permit tcp any any eq www
permit tcp any eq www any
|
NQ_CPU_HOST_Q
|
WCCP - Web Cache Communication Protocol
|
IP/Port Match
|
IP access list copp-system-acl-wccp
10 permit udp any eq 2048 any eq 2048
|
NQ_CPU_HOST_Q
|
BGP - Border Gateway Protocol
|
IP/Port Match
|
permit tcp 169.223.252.0 0.0.3.255 host 169.223.253.1 eq bgp
permit tcp 169.223.252.0 0.0.3.255 eq bgp host 169.223.253.1
|
NQ_CPU_CFM_Q
|
SSH - Secure Shell
|
IP/Port Match
|
permit udp [remote vty mgmt subnet] 0.0.0.255 any eq 22
permit udp [remote vty mgmt subnet] 0.0.0.255 eq 22 any
permit tcp [remote vty mgmt subnet] 0.0.0.255 any eq 22
permit tcp [remote vty mgmt subnet] 0.0.0.255 eq 22 any
|
NQ_CPU_HOST_Q
|
ICMP - Internet Control Message Protocol
|
Protocol Match
|
access-list 110 permit icmp any 169.223.253.1
|
NQ_CPU_HOST_Q
|
ISAKMP - Internet Security Association and Key Management
Protocol
|
IP/Port Match
|
permit udp any host x.x.x.x eq isakmp
permit udp any eq isakmp host x.x.x.x
permit udp any host x.x.x.x eq non500-isakmp
permit udp any eq non500-isakmp host x.x.x.x
|
NQ_CPU_HOST_Q
|
SAA - Service Assurance Agent
|
IP/Port Match
|
permit icmp host 10.2.2.4 host 10.1.1.1
|
NQ_CPU_HOST_Q
|
DHCP - Dynamic Host Configuration Protocol
|
IP/Port Match
|
permit udp host 0.0.0.0 host 255.255.255.255 eq bootps
permit udp any eq bootps any eq bootps
permit udp host 0.0.0.0 host 255.255.255.255 eq bootpc
permit udp any eq bootpc any eq bootpc
|
NQ_CPU_HOST_Q
|
DNS - Domain Name System
|
IP/Port Match
|
permit udp host <DNS server> eq domain any
permit udp host <DNS server> any eq domain
permit tcp host <DNS server> eq domain any
permit tcp host <DNS server> any eq domain
|
NQ_CPU_HOST_Q
|
DLSw - Data-Link Switching
|
IP/Port Match
|
permit any any eq 2065
permit any eq 2065 any
|
NQ_CPU_HOST_Q
|
LDP - Label Distribution Protocol
|
IP/Port Match
|
permit tcp any any eq 646
permit tcp any eq 646 any
permit udp any any eq 646
permit udp any eq 646 any
|
NQ_CPU_CFM_Q
|
RADIUS - Remote Authentication Dial In User Service
|
IP/Port Match
|
permit udp 64.202.160.0 0.0.1.255 eq 1645 any
permit udp 64.202.160.0 0.0.1.255 any eq 1645
permit udp 64.202.160.0 0.0.1.255 eq 1646 any
permit udp 64.202.160.0 0.0.1.255 any eq 1646
permit udp 64.202.160.0 0.0.1.255 eq 1812 any
permit udp 64.202.160.0 0.0.1.255 any eq 1812
permit udp 64.202.160.0 0.0.1.255 eq 1813 any
permit udp 64.202.160.0 0.0.1.255 any eq 1813
permit tcp 64.202.160.0 0.0.1.255 eq 1645 any
permit tcp 64.202.160.0 0.0.1.255 any eq 1645
permit tcp 64.202.160.0 0.0.1.255 eq 1646 any
permit tcp 64.202.160.0 0.0.1.255 any eq 1646
permit tcp 64.202.160.0 0.0.1.255 eq 1812 any
permit tcp 64.202.160.0 0.0.1.255 any eq 1812
permit tcp 64.202.160.0 0.0.1.255 eq 1813 any
permit tcp 64.202.160.0 0.0.1.255 any eq 1813
|
NQ_CPU_HOST_Q
|
HSRP - Hot Standby Router Protocol
|
IP/Port Match
|
permit udp any 224.0.0.0/24 eq 1985
permit udp any eq 1985 224.0.0.0/24
|
NQ_CPU_HOST_Q
|