Hostname(with wildcards) based access-list or policy.

Unanswered Question
Apr 3rd, 2009

Is there any way in cisco to use hostnames with wildcards either in ACL, or Policy, class map etc, for example I want to identify following devices with one keyword..for blocking/permit etc


UKlondon001

UKlondon002

UKlondon003

Uklondon004

UKlondon005


I want to capture all these with wildcard UKlondon*

something like regular expressions...

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
John Blakley Fri, 04/03/2009 - 08:38

You can group them in object-groups. You'll need to configure their names and then create an object group:


name 10.5.5.5 uklondon001

name 10.5.5.6 uklondon002


object-group network UKLONDONS

network-object host uklondon001

network-object host uklondon002


access-list permit tcp any object-group UKLONDONS eq 80


The above (from memory so don't quote me) will allow any traffic to hit any of those servers on port 80.


If you're wanting to do this for certain websites like youtube.com or google.com, you'll need to use regex and class-maps.


HTH,

John

ravinder.dahiya Fri, 04/03/2009 - 08:41

Thanks!! for reply..


1. Infact I am looking for a solutions in routers.

2. Still I am not able to see wildcards.



Actions

This Discussion