Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

Access list question

We have a central router (6509 with MSFC2). This has various VLANS created for internal hosts. There is another VLAN for a connection to a PIX firewall. The default route on the central router directs traffic to the PIX inside interface. There is an internal Proxy server and I need to know how to do an access list that will only allow internet traffic out to the PIX from the Proxy server, because at the moment people are unchecking there proxy server settings in ie and getting straight out onto the internet. Please can anyone advise. I have thought about :

access list 101 permit tcp host 'proxy server address' any eq www

access list 101 deny any any eq www

access list 101 permit any any

Will this work if I apply it inbound on the VLAN to the PIX firewall

Thanks in advance

1 REPLY

Re: Access list question

Apply, this, ACL outbound on your vlan to PIX.

103
Views
0
Helpful
1
Replies
CreatePlease to create content