Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
New Member

Blocking route securely

I have several networks directly connected to a router, and I do not want routing to take place between some of these networks. Are access-lists (standard or extended) the most secure way to achieve this, or are there additional/different methods to disable certain routes securely? Also, do you know where I can documentation on how to use a router as firewall if I do not the IOS with the firewall feature set?


New Member

Re: Blocking route securely

I can think of three very good options. First, like you mentioned in your post, access lists. access lists are a great way of minimizing traffic to certain destinations. Second, you could create VLAN's. Meaning, that users from one VLAN would not be able to communicate with users for another VLAN. Third option is to buy PIX. I don't know how large your organization is, but if you consider it to be small-to-medium size business then I would recommend that you buy Cisco PIX 515E which will let you do VLANs. I have a 2610 router which does not have Fast Ethernet so it cannot do VLANs. Find out if your router is VLAN compatible with dot1q.

CreatePlease to create content