Hi Guys One of our client that is small company due to BW limitation requires we block all social media sites. so my fast strategy was Class Map but I had no lack, below is the class mp class-map match-any url-block-class match protocol http url "youtube" match protocol http url "facebook" ! ! policy-map url-block-policy class url-block-class drop When I applied to the WAN interface it had no effect what so ever, I applied on the out direction
Attempt Number 2,I tried ACL as below
access-list 101 deny tcp any host 157.240.1.35 eq www access-list 101 permit tcp any any eq www with the ACL when I applied to the WAN interface I loose all internet connections even though I have the permit any any, I am not sure what I missing here but this seems to be my best solution.
WAN Interface Config as below interface FastEthernet0/1 description WAN ip address 192.168.1.254 255.255.255.0 ip nbar protocol-discovery ip nat outside ip virtual-reassembly duplex auto speed auto end
Sh version Cisco IOS Software, 2800 Software (C2800NM-ADVIPSERVICESK9-M), Version 12.3(11)T3, RELEASE SOFTWARE (fc4) Technical Support: http://ift.tt/yGenYU Copyright (c) 1986-2005 by Cisco Systems, Inc.
Thanks in advance
No comments:
Post a Comment