firewall setup

Unanswered Question
Apr 18th, 2008
User Badges:

Hi,


I will install cisco 1811 (with firewall feature set) to be a firewall to block the ICQ/YM/MSN. one interface is connected to ISP, the next interface is connected to internal

1. how to block the "ICQ/YM/MSN" and permit other traffic? any sample config?


### router config

interface e0

ip address 210.x.x.1 255.255.255.252

ip nat out side



interface e1

ip address 192.168.1.1 255.255.255.0

ip nat inside



2. if I build the VPN to another remote branch, how to config it?

e.g. remote branch ip is 192.168.128.1/24


3. how can I setup the DMZ (e.g. 211.1.1.1/28 segment for DMZ)?


rdgs


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3 (1 ratings)
Loading.
ROBERTO TACCON Sat, 04/19/2008 - 19:00
User Badges:

Hi,


you can configure the IOS router with 2 mode of Firewall operation: with Classic FW or with Zone-Based FW.


!!! Try to configure the router with the new solution Zone-based FW: Additional parameters can be applied to specify connection volumes or actions such as URL filtering for HTTP traffic ... !!!



Check all the documents:

http://www.cisco.com/en/US/products/sw/secursw/ps1018/prod_white_papers_list.html





For the last IOS release configuration (Cisco IOS Software Release 12.4(9)T):


http://www.cisco.com/en/US/products/ps6441/products_feature_guide09186a008060f6dd.html





Actions

This Discussion