Cisco Tools

Unanswered Question
Mar 25th, 2008

Are there any tools out there that are available so that computer requesting a service to get dropped automatically? For example, we have a computer that hits a webserver but for some reason when it hits the server the clogs the web server down. We are looking for a tool where we can control what its the server and what does not. If a computer does hits the server we would like to communication to be dropped before it hits the server.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
thiru.vel10 Tue, 03/25/2008 - 19:21

Solar Wins tools is there for this kind of monitoring this is tools is helpful for you.

Istvan_Rabai Tue, 03/25/2008 - 21:04

Hi Ramos,

The first solution that comes to my mind in this case is to use an access-list.

You should apply an access-list on the incoming interface of default gateway of the computer to restrict its access to the ip address of that web server.

It may look like the following example:

Computer's ip address is 10.1.1.1 255.255.255.0, it is connected to fa0/1 interface of the router through a switch.

Web server's ip address is 192.168.1.1 255.255.255.0.

Configuration on the default gateway router:

conf t

access-list 101 deny ip host 10.1.1.1 host 192.168.1.1

access-list 101 permit ip any any

interface fa0/1

ip access-group 101 in

This access-list will deny the computer's access to the web server only, but it will allow any other traffic. The computer will be able to access anything else.

Cheers:

Istvan

Actions

This Discussion