با سلام آقا من می خوام با هیچ اسکنری سرورام scan نشوند ...ممنونم اینم کانفیگ
و در آخرکد:access-list 115 remark For GroupAsync0 access-list 115 remark ------ access-list 115 remark Deny for Icmp----- access-list 115 deny icmp any any echo log access-list 115 deny icmp any any echo-reply log access-list 115 remark ---------- access-list 115 remark Deny for worms... access-list 115 deny udp any any eq tftp log access-list 115 deny tcp any any eq sunrpc log access-list 115 deny tcp any any eq 111 log access-list 115 deny udp any any eq 111 log access-list 115 deny tcp any any eq 135 log access-list 115 deny tcp any any range 135 139 log access-list 115 deny udp any any range 135 netbios-ss log access-list 115 deny udp any any eq 135 log access-list 115 deny udp any any eq 1433 log access-list 115 deny udp any any eq 1434 log access-list 115 deny udp any any eq 1444 log access-list 115 deny tcp any any eq 137 log access-list 115 deny udp any any eq netbios-ns log access-list 115 deny tcp any any eq 138 log access-list 115 deny udp any any eq netbios-dgm log access-list 115 deny tcp any any eq 139 log access-list 115 deny udp any any eq netbios-ss log access-list 115 deny tcp any any eq 445 log access-list 115 deny tcp any any eq 593 log access-list 115 deny tcp any any eq 4444 log access-list 115 remark ---- access-list 115 remark Permits for AMC DNS Servers: access-list 115 permit tcp any host 217.219.10.x eq domain access-list 115 permit udp any host 217.219.10.x eq domain access-list 115 permit tcp any host 217.219.10.x eq domain access-list 115 permit udp any host 217.219.10.x eq domain access-list 115 remark ------------- access-list 115 permit ip any any
interface Group-Async0
ip access-group 115 in