Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
217
Views
0
Helpful
3
Replies

access lists

carl_townshend
Spotlight
Spotlight

‎12-01-2005 02:03 AM - edited ‎03-03-2019 12:59 AM

When just allowing say internet traffic for my router at home out, do u just do an access list saying any any eq www, and then put an access list coming back in permitting established www connections, is this the normal way around this ?

thanks

Labels:
0 Helpful
3 Replies 3

thomas.chen
Level 6
Level 6

‎12-07-2005 06:50 AM

Do u want to allow all internet traffic from ur router and allow only established internet connections to come it?.If so, then the explanation of urs is corrrect.But remember, once u apply an access-list, there is always an implicit deny for all traffics that doesn't match the access list.

0 Helpful

carl_townshend
Spotlight
Spotlight
In response to thomas.chen

‎12-07-2005 08:27 AM

So what is the best way to to this then ?

0 Helpful

Georg Pauwen
VIP
VIP
In response to carl_townshend

‎12-07-2005 08:37 AM

Hello Carl,

allowing only www traffic is likely not enough, unless you have an internal DNS server. Check this access list:

access-list 101 permit tcp any any eq 443

access-list 101 permit tcp any any eq www

access-list 101 permit tcp any any eq domain

access-list 101 permit tcp any any established

This will likely serve your purpose...

HTH,

GP

0 Helpful
Customers Also Viewed These Support Documents