Cisco ACLs for Domain names

Tier2 · May 7, 2004

Has anyone used this method before on Cisco IOS Firewall ?
(example: A group of users that need to get to only a few web sites

http://www.microsoft.com

) Using ACLs, what if the web site has multiple address resolution ? Or what if the domains IP changes ? Any thoughts !

Dalong · May 11, 2004

If you want to check/restrict web surfing, you will be better off using filtering proxies (squidguard, dansguardian and such). Otherwise, you could easily spend half your life running after IP changes.

MattWray · May 11, 2004

One easy way that I learned to use was through Proxy Policies. We have a policy set up for Non-Internet users to proxy to our Intranet host. It is not a real proxy, so every site they try to access comes up with our Intranet. But because there was 2 sites that were valid, you can add exclusions to the rule.

Works great!

Thanks,

Matt Wray

GFH

http://www.sss-steel.com

Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Cisco ACLs for Domain names

Tier2

Vendor

Dalong

Technical User

MattWray

Technical User

Similar threads

Part and Inventory Search

Sponsor