Access list question

Unanswered Question
Oct 25th, 2007


I want to grant HTTPS access to a user to only 1 web page on the Internet (all access to Internet are blocked)

I do not want to put the webpage IP address in my ACL to avoid the problem if they change their IP address one day.

I have already my DNS set in ocmpany.

Need help please. Thanks in advance.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
nrichie Thu, 10/25/2007 - 10:24

With your requirement of not using the websites IP address, you are not going to be able to accomplish what you want to do unless you implement some 3rd party software such as Websense.

Access-list can be used on layers 3 & 4. They make decisions based upon IP address information (layer 3) and service port (layer 4). There is no functionality in the firewall or router that will resolve a website name to its IP address and either restrict or allow the traffic.

Hope this helps.



This Discussion