Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

How to restrict access to chat and messanger pages?

I am using a pix 501 with IOS version 6.1.2 and I have "gold" users (who need to be able to navigate without any restriction. The access-lists are like these:

access-list acl_in permit tcp host 192.168.0.70 any

access-list acl_in permit udp host 192.168.0.70 any

For the rest of the users I want to restrict chat pages and messanger, they only need to navigate and use http/s. The access-lists for these users are:

access-list acl_out permit tcp any host 192.168.0.5 eq www

access-list acl_out permit tcp any host 192.168.0.5 eq 443

access-list acl_in permit udp any any eq domain

I have used this same configuration and getting the results I want in a pix firewall 520 version 6.0.1, but now I am using a pix firewall 501 version 6.1.2 and the results are not the same, I am still able to access to chat and open messanger. How could I solve my problem.

If anyone has an advise I would appreciate it!

Thanks

1 REPLY
New Member

Re: How to restrict access to chat and messanger pages?

Most chat clients will use port 80 if all othe ports are blocked. You might want to dig into your debugging log files to see what is actually happening.

106
Views
0
Helpful
1
Replies
CreatePlease to create content