• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 958
  • Last Modified:

How to block http traffic from Cisco Router.....?

Hello EEs,

Greetings!

I have attached config of my office router which is from Cisco.

It is configured with cisco firewall & I can access this router through telnet from remote location,
Now I dont want all internal office users to access internet, meaning all office users must not access internet using port 80 as well as 8080.
All http & https traffic coming from cisco firewall (office) must not be routed.
Kindly be noted that router must not keep any logs which should be seen later after doing the changes.
Awaiting for your earlier reply.
Thanks,
DXB

router.txt
0
dxbdxb2009
Asked:
dxbdxb2009
  • 2
1 Solution
 
memo_tntCommented:
hi

create a new ACL that deny port 80,8080, and 3128, and apply it to the internal interface

as:

access-list 111 deny tcp any any eq www
access-list 111 deny tcp any any eq 8080
access-list 111 deny tcp any any eq 3128
access-list 111 permit ip any any


interface BRI0

ip access-group 111 out
ip access-group 111 in


0
 
memo_tntCommented:
wait a second,,
the interface BRI0 shutdown reference to your configuration file...
so apply it to your WAN interface as:

ip access-group 111 in
ip access-group 111 out
0
 
Istvan KalmarCommented:
I think you enough to configure an acl on interface Ethernet0
0

Featured Post

Rewarding opportunities for women in IT

Across the nation, technology jobs are vacant because there aren’t enough qualified professionals to fill them. With a degree from WGU, you can get the credentials it takes to become an in-demand IT professional. Plus, WGU’s IT programs include industry certifications.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now