07-12-2013 10:44 PM - edited 03-07-2019 02:23 PM
Hi All,
I have configured multiple VlANs (Vlan10 and 20) on cisco L3 switch. And I want to stop downloads to Vlan20 users on L3 switch. Can I do this on my cisco L3 switch?
Please respond..
Regards,
Satish.
07-12-2013 11:17 PM
Satish,
What downloads you want to stop? I believe you can do that on the firewall not on the switch.
HTH
Regards
Inayath
07-12-2013 11:29 PM
I want to stop all kind of downloads to specified vlan users. Can I do this on my cisco 2900 router ?
07-13-2013 12:02 AM
Refer the below thread it might help you"
07-14-2013 06:52 PM
If the downloads you said is like: user can open http://software.opensuse.org/123/en but will be blocked if user try to download the ISO image from the site, then i don't think 2900 router will do any help on this. what you need for this is a web filtering software or device or proxy server that support filtering (like ISA server, websense).
07-14-2013 10:27 PM
Hi,
If you want to block file sharing from the VLAN , use the extended inbound & outbound ACL blocking TCP port 445,135,139
ip access-list extended Deny-fileshare
deny tcp any any eq 445
deny tcp any any eq 139
deny tcp any any eq 135
permit ip any any
int vlan 20
ip access-group Deny-fileshare in
ip access-group Deny-fileshare out
It will block all filesharing communication from VLan 20.You can apply ACL on router also , the LAN port which goes to your CORE Switch.
Thanks
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: