Avatar of ngaba
ngabaFlag for United States of America asked on

ACL's on a Policy Map

I'm in the process of using policy and class maps to prevent aol, msn and yahoo IM traffic. But there are some people in IT who rely on using the IM for certain things. Whether its help for something or a quick message or whatever. But our IT department is on a different vlan than all the other users. Is there a way that I can still use the policy and class maps to drop IM traffic for all vlans except the IT vlan using ACLs?
Hardware Firewalls

Avatar of undefined
Last Comment
API_NOC

8/22/2022 - Mon
API_NOC

You can create your ACL to deny the subnets that you want to block the IM services on.  Once you add a permit ip any any at the end, it will not filter out your IT department.
ASKER
ngaba

But how would the ACL be applied to the policy map so it knows which traffic to allow and not allow?
ASKER CERTIFIED SOLUTION
API_NOC

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes