firewall setup

Unanswered Question
Apr 18th, 2008

Hi,

I will install cisco 1811 (with firewall feature set) to be a firewall to block the ICQ/YM/MSN. one interface is connected to ISP, the next interface is connected to internal

1. how to block the "ICQ/YM/MSN" and permit other traffic? any sample config?

### router config

interface e0

ip address 210.x.x.1 255.255.255.252

ip nat out side

interface e1

ip address 192.168.1.1 255.255.255.0

ip nat inside

2. if I build the VPN to another remote branch, how to config it?

e.g. remote branch ip is 192.168.128.1/24

3. how can I setup the DMZ (e.g. 211.1.1.1/28 segment for DMZ)?

rdgs

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3 (1 ratings)
Loading.
ROBERTO TACCON Sat, 04/19/2008 - 19:00

Hi,

you can configure the IOS router with 2 mode of Firewall operation: with Classic FW or with Zone-Based FW.

!!! Try to configure the router with the new solution Zone-based FW: Additional parameters can be applied to specify connection volumes or actions such as URL filtering for HTTP traffic ... !!!

Check all the documents:

http://www.cisco.com/en/US/products/sw/secursw/ps1018/prod_white_papers_list.html

For the last IOS release configuration (Cisco IOS Software Release 12.4(9)T):

http://www.cisco.com/en/US/products/ps6441/products_feature_guide09186a008060f6dd.html

Actions

This Discussion