Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
339
Views
0
Helpful
1
Replies

ASA access rule to ip that changes

sfisher
Level 1
Level 1

‎02-10-2010 01:39 PM - edited ‎03-11-2019 10:07 AM

I have an ASA 5510

I'm trying to get an access rule that allow https traffic to www.download.windowsupdate.com

The www.download.windowsupdate.com resolves (for me) to an akamai IP 63.97.123.59

I try again later it resolves to an akamai IP 63.80.4.74

earlier it was 204.203.18.138

I can create an access rule to allow an IP range for a while, then another IP comes along and traffic is denied.

I'm pretty sick of the playing chase the IP.

Is there any way to link an access rule to a domain name other than an IP?

Labels:
0 Helpful
1 Reply 1

Kureli Sankar
Cisco Employee
Cisco Employee

‎02-10-2010 06:11 PM

I am afraid not.

access-list only takes object groups (which contain IPs) or IP address in them.

-KS

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card