Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

806 router

I´ve installed a 806 router for basic internet access. The IOS has built in firewall.

When the firewall option is configured, I found that access to the internet was very slow, and when it was not, then the access was fine.

Does the firewall option use a lot of resources, or is this a configuration (I used an example from Cisco site) problem?

Thanks

Fernando

3 REPLIES
Bronze

Re: 806 router

Hi, you are probably accessing sites that use java applets.

Include a line like the following in your firewall config

ip inspect name http java-list 10 timeout 3600

and the access-list statement

access-list 10 permit any

I had the same situation with my installation and this cured it.

hth

New Member

Re: 806 router

Thanks. I will try that then I will give you feedback.

Regards

Fernando

Bronze

Re: 806 router

Hi Fernando, bear in mind can will make a potential hole in your firewall.

With this level of access control you only have option of allowing trusted sites, blocking un-trusted sites, allowing all or blocking all.

If you are only allowing access to a few sites then

change the access-list to "deny any log", visit the sites, allow the logged IPs and deny everything else, but this is obviously high maintenance in a flexible environment. Otherwise go with permit any, I've not had any problems.

Best Regards,

Ross

96
Views
0
Helpful
3
Replies