Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Need to know how to block port 80 to outside probes

I have tried everything in the book but must be doing something wrong I want to block port 80 to outsiders how do you do this on a cisco 800 series router

  • Other Network Infrastructure Subjects
2 REPLIES
Silver

Re: Need to know how to block port 80 to outside probes

Use IOS access-lists:

If you have a Cisco 805:

interface Serial0

..stuff..

ip access-group 101 in

..stuff..

!

access-list 101 deny tcp any 192.168.1.0 255.255.255.0 eq 80

access-list 101 permit ip any any

First line says:

Deny all TCP port 80 sessions originating from "anywhere" with a destination to 192.168.1.0/24

Second line says:

Permit all IP-traffic originating from "anywhere" with a destination of "anywhere".

Where 192.168.1.0/24 is your Ethernet-subnet.

//Stig

New Member

Re: Need to know how to block port 80 to outside probes

The other guy's got the idea right, but you need a wildcard mask instead of a subnet mask.

0.0.0.255

156
Views
0
Helpful
2
Replies
This widget could not be displayed.