Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Blockiung everything but web browsing access for computer

i currently have a 2621 router. We want to be able to block all traffic coming into and going out of one ip address on our network but allow for that computer/ip to use a browser to cruise the web. i would like to do this via an access lsit unless there is a better way.... i tried to do one that allows all tcp established from the outside to the ip address and had to open up all the udp ports to get the machine to browse the internet..

thanks for any help you can give me on this..

Cheers!

  • Other Network Infrastructure Subjects
1 REPLY

Re: Blockiung everything but web browsing access for computer

Configure an access-list as follows

access-list 101 permit tcp any eq 80 host established

access-list 101 deny udp any host

access-list 101 permit ip any any

apply this inbound on your serial interface connected to the internet.

The second statement would deny any udp connections initiated from outside, as well as , return udp packets for any udp connections initiated from the inside to the outside.

79
Views
0
Helpful
1
Replies