Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
201
Views
0
Helpful
1
Replies

Blockiung everything but web browsing access for computer

aseamans
Level 1
Level 1

‎03-04-2003 01:53 PM - edited ‎03-02-2019 05:34 AM

i currently have a 2621 router. We want to be able to block all traffic coming into and going out of one ip address on our network but allow for that computer/ip to use a browser to cruise the web. i would like to do this via an access lsit unless there is a better way.... i tried to do one that allows all tcp established from the outside to the ip address and had to open up all the udp ports to get the machine to browse the internet..

thanks for any help you can give me on this..

Cheers!

Labels:
0 Helpful
1 Reply 1

thisisshanky
Level 11
Level 11

‎03-04-2003 02:22 PM

Configure an access-list as follows

access-list 101 permit tcp any eq 80 host established

access-list 101 deny udp any host

access-list 101 permit ip any any

apply this inbound on your serial interface connected to the internet.

The second statement would deny any udp connections initiated from outside, as well as , return udp packets for any udp connections initiated from the inside to the outside.

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents