I am a novice networking user and am trying to use a Cisco Catalyst 2900 XL to block certain ports from our network. Certain users are using the network to use AOL Instant Messanger, Yahoo, KaZaa, Etc. during class and we are trying to stop it. Also, we would like to block Internet access (on port 8002 due to Proxy) at certain times.
To accomplish this, the only way I can see is to assign access-lists to the switch. I have the following lists:
access-list 102 allow tcp any any eq 524 (524 is the networking port ? to allow users to save files to network.)
The switch is connected by Port #3 to a fiber line to the main server. To impliment the rule, I have found this command:
interface fastethernet 0/3
ip access-group 102 out
ip access-group 102 in
However, the fastethernet port does not reconize this command.. I am not sure if i have given enough information, but if you can decipher what I mean, please help!
-Anthony Warren
To accomplish this, the only way I can see is to assign access-lists to the switch. I have the following lists:
access-list 102 allow tcp any any eq 524 (524 is the networking port ? to allow users to save files to network.)
The switch is connected by Port #3 to a fiber line to the main server. To impliment the rule, I have found this command:
interface fastethernet 0/3
ip access-group 102 out
ip access-group 102 in
However, the fastethernet port does not reconize this command.. I am not sure if i have given enough information, but if you can decipher what I mean, please help!
-Anthony Warren