×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Block http/https from certain IPs

Unanswered Question
Oct 28th, 2014
User Badges:

Hi,

Need advise on how to block http/https traffic from certain IPs. Created an AD group and added the machines to the group and then added a Access Policy to block 3 Protocols but it didn't work.

 

Any suggestions?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
kushsriva Thu, 10/30/2014 - 04:07
User Badges:
  • Bronze, 100 points or more

Hi,

 

In the WSA, you can configure Identity Policy based on the IP/Subnet and use this Identity in an Access policy to restrict access.

1). Go to WSA --> Web Security Manager --> Identities.

2). Create a new Identity and under "Membership Definition" --> "Define Members by subnet" enter the IP addresses.

3). Now go to Access policies, create a new Access policy and select the Identity created above.

4). Now you can go to "Protocols and User Agents" for the policy and block the protocols which you do not want the PC's the use.

 

 

-- Do Rate if helpful

Regards,

Kush

Actions

This Discussion