Block MySpace and IM on Cisco 1700 Series Router

I need to block MySpace and AOL IM on a Cisco 1700 series router/firewall.  I have tried to setup the Access-list but I am still having problems.
ComNetPlusAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

RPPreacherCommented:
Can you post the ACL that you created?
0
ComNetPlusAuthor Commented:
Since it wasn't working I did not save the temporary access-list and did not save it to the configuration.
Here's where it currently stands.

Standard IP access list 10
    permit 10.10.10.0, wildcard bits 0.0.0.255 (250915 matches) check=27638
0
RPPreacherCommented:
Block port 5190 (AIM)
Block IP ranges 67.134.143.0 - 67.134.143.255

The access-list should look like this

access-list 101 deny tcp any any eq 5190
access-list 101 deny ip any 67.134.143.0 0.0.0.255
access-list 101 permit ip any any
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Introducing the "443 Security Simplified" Podcast

This new podcast puts you inside the minds of leading white-hat hackers and security researchers. Hosts Marc Laliberte and Corey Nachreiner turn complex security concepts into easily understood and actionable insights on the latest cyber security headlines and trends.

ComNetPlusAuthor Commented:
What IP is subnet 67.134.143.0?
When I ping www.myspace.com I receive IP 216.178.38.131.
0
RPPreacherCommented:
I went to arin.net
myspace.com owns 67.134.143.0/24.
0
ComNetPlusAuthor Commented:
I don't fully understand why, but I had to have both entries to be effective.

access-list 101 deny tcp any any eq 5190
access-list 101 deny ip any 67.134.143.0 0.0.0.255
access-list 101 deny ip  any 216.178.38.0 0.0.0.255
access-list 101 permit ip any any

Anyway it all now works and blocks myspace.

Thanks,
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Chat / IM

From novice to tech pro — start learning today.