Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Block MySpace and IM on Cisco 1700 Series Router

Posted on 2007-03-21
6
Medium Priority
?
489 Views
Last Modified: 2008-01-09
I need to block MySpace and AOL IM on a Cisco 1700 series router/firewall.  I have tried to setup the Access-list but I am still having problems.
0
Comment
Question by:ComNetPlus
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 20

Expert Comment

by:RPPreacher
ID: 18763663
Can you post the ACL that you created?
0
 

Author Comment

by:ComNetPlus
ID: 18763727
Since it wasn't working I did not save the temporary access-list and did not save it to the configuration.
Here's where it currently stands.

Standard IP access list 10
    permit 10.10.10.0, wildcard bits 0.0.0.255 (250915 matches) check=27638
0
 
LVL 20

Accepted Solution

by:
RPPreacher earned 375 total points
ID: 18763801
Block port 5190 (AIM)
Block IP ranges 67.134.143.0 - 67.134.143.255

The access-list should look like this

access-list 101 deny tcp any any eq 5190
access-list 101 deny ip any 67.134.143.0 0.0.0.255
access-list 101 permit ip any any
0
Introducing the WatchGuard 420 Access Point

WatchGuard's newest access point includes an 802.11ac Wave 2 chipset, providing the fastest speeds for VoIP, video and music streaming, and large data file transfers. Additionally, enjoy the benefits of strong security as the 3rd radio delivers dedicated WIPS protection!

 

Author Comment

by:ComNetPlus
ID: 18763934
What IP is subnet 67.134.143.0?
When I ping www.myspace.com I receive IP 216.178.38.131.
0
 
LVL 20

Expert Comment

by:RPPreacher
ID: 18763995
I went to arin.net
myspace.com owns 67.134.143.0/24.
0
 

Author Comment

by:ComNetPlus
ID: 18764266
I don't fully understand why, but I had to have both entries to be effective.

access-list 101 deny tcp any any eq 5190
access-list 101 deny ip any 67.134.143.0 0.0.0.255
access-list 101 deny ip  any 216.178.38.0 0.0.0.255
access-list 101 permit ip any any

Anyway it all now works and blocks myspace.

Thanks,
0

Featured Post

Cyber Threats to Small Businesses (Part 1)

This past May, Webroot surveyed more than 600 IT decision-makers at medium-sized companies to see how these small businesses perceived new threats facing their organizations.  Read what Webroot CISO, Gary Hayslip, has to say about the survey in part 1 of this 2-part blog series.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Months ago my boss came to me with a simple request, “How can we minimize GoTo meeting accounts and also improve our integration and collaboration initiatives?”  Well the answer, with some research, was easy… Lync.  Lync provided us all the necessar…
Let Bitmoji into your life. Now is the time to learn a new language of smartphone messaging with this brief introduction.
The goal of the tutorial is to teach the user how to instant message and make a video call in Skype.
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …
Suggested Courses

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question