Foxgate - Filter evil ports

1. firewall enable
2. firewall default permit
3.  
4. ip access-list extended NET
5.   deny udp any-source any-destination d-port 139
6.   deny udp any-source any-destination d-port 137
7.   deny udp any-source any-destination d-port 138
8.   deny udp any-source any-destination d-port 445
9.   deny tcp any-source any-destination d-port 137
10.   deny tcp any-source any-destination d-port 138
11.   deny tcp any-source any-destination d-port 139
12.   deny tcp any-source any-destination d-port 445
13.   permit ip any-source any-destination
14. !
15.  
16. interface ethernet 0/0/1
17. ip access-group NET in
18. interface ethernet 0/0/2
19. ip access-group NET in
20. interface ethernet 0/0/3
21. ip access-group NET in
22. interface ethernet 0/0/4
23. ip access-group NET in
24. interface ethernet 0/0/5
25. ip access-group NET in
26. interface ethernet 0/0/6
27. ip access-group NET in
28. interface ethernet 0/0/7
29. ip access-group NET in
30. interface ethernet 0/0/8
31. ip access-group NET in
32. interface ethernet 0/0/9
33. ip access-group NET in
34. interface ethernet 0/0/10
35. ip access-group NET in
36. interface ethernet 0/0/11
37. ip access-group NET in
38. interface ethernet 0/0/12
39. ip access-group NET in
40. interface ethernet 0/0/13
41. ip access-group NET in
42. interface ethernet 0/0/14
43. ip access-group NET in
44. interface ethernet 0/0/15
45. ip access-group NET in
46. interface ethernet 0/0/16
47. ip access-group NET in
48. interface ethernet 0/0/17
49. ip access-group NET in
50. interface ethernet 0/0/18
51. ip access-group NET in
52. interface ethernet 0/0/19
53. ip access-group NET in
54. interface ethernet 0/0/20
55. ip access-group NET in
56. interface ethernet 0/0/21
57. ip access-group NET in
58. interface ethernet 0/0/22
59. ip access-group NET in
60. interface ethernet 0/0/23
61. ip access-group NET in
62. interface ethernet 0/0/24
63. ip access-group NET in