Chapter 3
Configuring Application Protocol Inspection
•
Table 3-7
Port
domain
ftp
ftp-data
http
https
irc
matip-a
nntp
pop2
pop3
rtsp
sip
skinny
smtp
sunrpc
telnet
Cisco 4700 Series Application Control Engine Appliance Security Configuration Guide
OL-16202-01
Configuring a Layer 3 and Layer 4 Application Protocol Inspection Traffic Policy
tcp | udp —Specifies the protocol, TCP or UDP, as follows:
any—Specifies the wildcard value for the TCP or UDP port number. If
–
you use any in place of either the eq or range values, packets from any
incoming port will match.
eq port_number—Specifies that the TCP or UDP port number must
–
match the specified value. Enter an integer from 0 to 65535. A value of
0 instructs the ACE to include all ports. Alternatively, you can enter the
name of a well-known TCP port as listed in
UDP port as listed in
range port1 port2—Specifies a port range to use for the TCP or UDP
–
port. Valid port ranges are from 0 to 65535. A value of 0 instructs the
ACE to match all ports.
Well-Known TCP Ports and Keywords
Port Number
53
21
20
80
443
194
350
119
109
110
554
5060
2000
25
111
23
Table
3-8.
Description
Domain Name System
File Transfer Protocol
File Transfer Protocol Data
Hypertext Transfer Protocol
HTTP over SSL protocol
Internet Relay Chat protocol
Matip Type A protocol
Network News Transport Protocol
Post Office Protocol v2
Post Office Protocol v3
Real Time Streaming Protocol
Session Initiation Protocol
Cisco Skinny Client Control Protocol (SCCP)
Simple Mail Transfer Protocol
Sun Remote Procedure Call (RPC)
Telnet protocol
Table 3-7
or a well-known
3-97