Cisco WAN :: 1841 To Block Access To A Specific Interface

Feb 11, 2013

I have an 1841 between my firewall and the ISP.  Three interfaces - multilink to ISP, FA to my firewall, and FA to my inside network.  I use the inside interface for configs aand snmp access, etc.   Only my ISP-assigned fixed address block will get routed to the multilink by the ISP but I am nervous about the inside interface sitting on my LAN.   I know I can remove it, but if I keep it there, how can I set up an ACL so that all traffic from the multilink interface is denied to the inside interface?  I suppose another way to think about it that the inbound iface can only accept traffic from its own outside, not from the router.I think this is fairly simple but I don't want to knock down the traffic if I get it wrong.

View 8 Replies


ADVERTISEMENT

Cisco WAN :: Router 1841 - Way To Allow Specific Websites Access

Jan 25, 2011

Is there an easy way to allow specific websites access in cisco router 1841? I am trying to allow a website through access list 102 but not working. I am using access-list 102 permit ip host 192.168.21.20 host www.website.comIf i allow all websites then it works fine.

View 1 Replies View Related

Block Access To Internet On Specific Time Intervals?

Aug 10, 2011

I have the Qwest/Actiontec Q1000 modem/router. I go to the ip address using my web-browser and open up advanced configurations -> access scheduler. I select a computer (and it automatically adds the MAC address) and then the days/times I want the internet to be accessible. However, when I click "add" (to add my internet allowance to the scheduler list) it just says 12:00 to 0:00, which is essentially permanently blocking the internet for that computer.

View 7 Replies View Related

Block 1433 Port With Access List For Specific Ip Address?

Jan 2, 2012

I want to block the sql port access of my server to all except few of my ip addresses while access list on Cisco Router IOS how do i do that.

View 3 Replies View Related

Cisco Switching/Routing :: 1841 Need To Block MAC Address / Applied Command Access-list

Sep 4, 2012

I am using cisco 1841 LAN router, I need to block MAC address i have applied the command access-list 1102 deny 0000.0000.0000.0000 mac address..... but it does not work.

View 24 Replies View Related

Cisco VPN :: ASA 5510 - Configure Remote Access VPNs To Use Specific Interface

Aug 12, 2012

I am adding a second external connection to an existing system on an ASA 5510 with ASA V8.2 and ASDM 6.4. I added the new WAN using an other interface (newwan).
 
The intention is to route most internet traffic over the new route/interface (newwan) but keep our existing VPNs using the former interface (outside).

I used the ASDM GUI to make the changes and most of it works.ie. The default route goes via (newwan). Outgoing VPNs of a site to site nature use the previous route via (outside) as they now have static routes to achieve this.
 
The only problem is that incomming Remote Access Anyconnect VPNs are not working. I set the default static route to use the new interface (newwan) and the default tunneled route to be via (outside) but this is the point is goes wrong....
 
I can no longer ping the outside IP address from an external location. It seems the outside interface does not send traffic back to the - outside interface (or at least that's where I think the problem lies). How do I force replies to the incomming VPN remote traffic from unknown IPs to go back out on the outside interface?
 
The only change I need to make to get everything working on the outside interface again is to make the Default Static route use the outside interface. Which puts all the internet traffic back on the original (outside) connection.

View 6 Replies View Related

Cisco WAN :: 1841 With Virtual-Access Interface

Dec 22, 2010

I have a problem in my Cisco 1841 in Virtual-Access Interface  all interfaces is UP Except Virtual Access is Down . [code]
 
when i want recover the virtual access to up ,should i do shut & no shut to the ATM interface.What is the cause of the problem, and how I can solve this issue?

View 2 Replies View Related

Cisco WAN :: 1841 Router - HWIC Interface Card - Cannot See Interface In Configuration File

May 9, 2012

i have a 1841 cisco router and i recently purchased a 1 port HWIC wan interface card. My problem is that I cannot see the interface in my config file. Is there something i am missing?

View 8 Replies View Related

How To Block Specific Domains In Sonicwall

Apr 5, 2011

How do I block specific domains (pandora.com, etc.) in the Sonicwall? It seems like this would happen in the CFS but do I need a subscription for this? I don't want to subscribe to Sonicwall's filtering list, I just want to block a couple specific domains.

View 9 Replies View Related

How To Block Specific Sites With Router

Oct 31, 2011

I have a TL-WR740N Wireless Lite N Router and i want to block specific websites with it.

View 4 Replies View Related

Cisco Firewall :: ASA 8.0(5) / Block Specific Url From Accessing Server In Dmz?

May 4, 2011

I have Cisco ASA 8.0(5) and I need to block specific url to acees my https server in dmz ?I read about websence technology, but I think it's not free right? Also I read abotu policy inspection map's but in my case is HTTPS not http ..

View 1 Replies View Related

D-Link DIR-825 :: Block Inbound Traffic From A Specific IP?

Oct 5, 2011

How to configure the 825 to block inbound traffic from a specific internet IP address ?i noticed an IP and MAC that i don't recognize that is listed as a connection to my NAS's media server ...i blocked it in the NAS configuration page, but i don't want any unsolicited traffic into my network.

View 3 Replies View Related

Cisco Firewall :: 5505 Block Port 80 On A Specific Host In LAN

Apr 22, 2012

I'm using an ASA5505 (8.4(1)) and would like to block port 80 on a specific host in the LAN so machines in other remote LANs connected via VPN can't access this port on the host. Devices in the local LAN should have access to this port on the host. Here are the commands I'm using:
 
-access-list block_port extended deny tcp any host 10.20.10.20 eq 80
-access-list block_port extended permit ip any any
-access-group block_port out interface inside
 
These commands are not working as I would expect them to. When I browse to http://10.20.10.20 from a remote machine over the VPN tunnel I am able to access the host web server.

View 2 Replies View Related

Cisco Switching/Routing :: 4500 - Allow Only Specific Vendor Mac And Block Others

May 20, 2013

I have arequirement where in I need to allow only specific vendor made desktops/laptops to be connected to the switch and block the rest. Say I want only the HP made Laptops to be connected on the Network. and block all other vendors. such as dell, ibm etc.
 
 I am having Catalyst 4500 switches in My network. i tried using the mac access list using the permit and deny statement and then mapping the access list to the vlan access map and then filter using the vlan id. But this doesnt work on cat 4500....the same I tested for 2950 switch and it works perfectly. are there any restrictions on 4500 or any extra configuration has to be done.

View 2 Replies View Related

Routers / Switches :: Which Router Can Block Specific Web Pages

Apr 4, 2012

I dont mean a website like facebook.com, but i want it to block an individual page,such as a profile page, yet still be able to access the rest of the site? Again i'm not after facebook settings etc, but i want to restrict access to certain webpages within Lan.

View 2 Replies View Related

How Does Firewall Block Or Filter Traffic On Specific Port Or IP Address

Nov 15, 2011

How does a firewall block or filter traffic on a specific port or IP address?

View 1 Replies View Related

Linksys Cable / DSL :: WAG160Nv2 / Block Specific External Ip Address?

Jul 8, 2011

I have a WAG160Nv2 and I want to block specific external ip addresses from trying to get at our server that uses the WAG160Nv2 as an internet gateway. It's not immediately obvious if this can be done from looking through the config pages.

View 4 Replies View Related

Linksys Wired Router :: RVL200 Block Specific LAN / LAN Traffic

Jul 25, 2011

if the firewall rules in the RVL200 work for inter LAN routing as well as LAN<->WAN?  I need 2 separate networks in a house, 1 for business 1 for family, and I want to only allow my IP on network 1 (family net,10.0.0.0/24) access to network 2 (business net 10.0.1.0/24).  I want this as if I change rooms were a access point for business is not available I can use the home net and specific IP to access certain business net IPs.   I saw you can turn inter vlan routing on or off, but it wasn't clear on firewall rules.know of a similar router in cost but with gige instead of 100Mb ports?

View 1 Replies View Related

Linksys Wireless Router :: Block Website With Specific Time On Wrt610n?

Jul 3, 2012

How to block a specific website with a specific time (office hours) for example "facebook" I want to block facebook within 8AM - 12Noon then 12-1 they can access the website, then 1-4 block again the website .

View 3 Replies View Related

D-Link DIR-655 :: Create Firewall Rule To Block All DNS Requests Except To Specific Servers

Mar 3, 2011

Using a DIR-655, does anybody know how to create a firewall rule to block all dns requests except to specific servers?

View 2 Replies View Related

Linksys Wireless Router :: Block Imessage To Specific Clients On EA6500

Dec 4, 2012

I was wondering if it was possible to block imessage to specific clients on the EA6500.These are the ips apple uses for imessage I need to create a firewall rule that blocks these ips from reaching a specific client on the network.
 
[code]....

View 1 Replies View Related

Belkin Routers :: Way To Block A Specific List Of Sites With N750 DB Wireless

Dec 17, 2012

I have a Belkin N750 router which I purchased because the box said it had filtering options. I didn't realize that the filtering was only sites that Norton kept track of. There are certain adware sites I know about that I would like to filter. Possible with this router?

View 5 Replies View Related

Linksys Wireless Router :: EA4500 - Block Specific Site Based On Keywords In Webpage Address?

Apr 2, 2013

I have an EA4500. I am trying to block a specific site based on keywords in the webpage address. how to get the EA4500 to block sites with based on keywords.

View 1 Replies View Related

Routing Of Specific Traffic To Certain Interface?

Jul 7, 2011

I have two ethernet adaptors on my windows machine. OS is Win-XP.I am running ADSL broadband on LAN1 and on LAN2 I am accessing applications on our company's WAN. LAN1 is on 192.168.1.0/24 subnet and LAN2 is on 10.68.104.0/22 subnet.Accessing application through LAN2 involves DNS that is located distantly, therefore routers are also in picture.Problem is that while accessing the application that run on the network of LAN2, I have to disable LAN1. Otherwise the traffic goes on LAN1.

View 2 Replies View Related

Cisco Firewall :: 5512X - IP Address Associated With Device Or Is It Interface Specific

Jan 21, 2013

I'm trying to get started on setting up my first Transparent ASA.I understand an ASA in Transparent Mode can now have an ip address with Bridge Groups or some such mechanism. I'm looking for examples of how to set that up and other information below. Is the ip address associated with the device or is it interface specific? Will I be able to SSH with that ip address setup? Can I use ASDM if the Transparent ASA has an ip address? This 5512X has an IPS. Any one who has setup an IPS on this platform knows it has some very particular requirments in order to communicate with the outside world. I need examples of how to do that with a Transparent ASA.How is NAT setup differently (if at all) on a Transparent ASA?Are ACLs done any differently?

View 3 Replies View Related

Cisco Firewall :: Force ASA 5520 Traffic Out Specific Interface

Jun 1, 2011

I'm trying to route all default traffic from my production environment through my ASA 5520 on the "outside2" interface.The 5520 has a site to site VPN to our DR site on the "outside/inside" interfaces via one ISP. On another ISP, interfaces "outside2/inside2" go to the internet.
When I make my 3750 stack default route for the inside2 interface IP I cannot get to the internet. When it is pointed to the inside interface on my 5505, I can.
 
I get the following errors when I try to open google.com from a production server:Why is the 5520 trying to use the "outside" interface instead of the "outside2" interface to go out?

View 6 Replies View Related

Cisco Firewall :: 1841 NAT Out One Interface But Not Other With IOS?

Feb 27, 2012

I am trying to figure out how to use a Cisco 1841 IOS router to take traffic from one interface and source NAT it out towards the Internet on one interface and at the same time NOT perform NAT when sending the traffic towards a different routed interface. 
 
Here the RemoteSite has connectivity back to the MainCampus, but there is no need to NAT traffic from the one site to the other.   They share the same umbrella of address space.   However, the RemoteSite needs to have its Internet-bound traffic NAT'ed out to the Public Internet via a third interface.  I know that I could just NAT everything out from the Remote Site and map the traffic back onto the same address space for intra-campus communication, but I'd rather avoid that and just NAT where I need to NAT it to the Internet.
 
I do have a caveat here:   in the event that either the MainCampus or the Public Internet interfaces go down, I would like to failover traffic from the downed link to other good link.  For example, I want to NAT all traffic (including "intra-campus" traffic) out via the Public Internet if the direct link to the MainCampus is down.  For the other example, if the Public Internet direct link is down, I would just send out all traffic without NAT towards the MainCampus.

View 1 Replies View Related

Cisco WAN :: 1841 ISR Sub-interface With VLAN Tagged

Dec 7, 2010

I am trying to roll out a new internet router.  The problem I am faced with is the LEC only supports VLAN 1227 and greater, specifically they are assigning me VLAN 2528. I am able to create the sub-interface and setup dot1q encapsulation for VLAN 2528, but the vlan database does not have the ability to add VLAN 2528 to it so I am unable to get layer 2 up and going, thus preventing me from getting the implementation done.

View 11 Replies View Related

Cisco WAN :: Input Errors On 1841 LAN Interface

Nov 4, 2011

I use an 1841 router as an internet facing firewall with a 10MB MetroE connection.  Lately users started reporting slow internet download speeds and web pages timing out.  Bandwidth reports do not show the link as being saturated so I looked at the interfaces on the 1841.   The interface connected to the provider shows OK as far as errors but the LAN side of the router shows steadily increasing input errors.  It doesn't show any other errors, no CRC, frame, runts, giants or overruns, just generic input errors.  What type of errors are those?  Nothing is being logged on the console.
 
I moved the connection to another switch ports and the errors continue.  I switched it down to 10MB and also changed the switch and the errors slow down but don't stop.  Interestingly, the switch side never shows any errors.  What can I do here?  I guess it can be a bad interface but that is such a rare thing that I am hesitant to replace the router.

View 11 Replies View Related

Cisco WAN :: 1841 - Show DSL Interface Command

Jul 15, 2012

I'm trying to troubleshoot one of our site today and can't seem to issue the show dsl interface command on a 1841 router. Does the same command is used for SHDSL or am I running with an IOS bug?
 
#sh dsl? 
% Unrecognized command
 
#sh ver
Cisco IOS Software, 1841 Software (C1841-BROADBAND-M), Version 12.4(15)T7, RELEASE SOFTWARE (fc3)
Technical Support: {URL}
Compiled Wed 13-Aug-08 15:42 by prod_rel_team
 
#sh inv 
NAME: "chassis", DESCR: "1841 chassis"
PID: CISCO1841         , VID: V05 , SN: FHK13212639
 
NAME: "WIC/HWIC 0", DESCR: "WAN Interface Card - ATM (With multi line G.SHDSL module)"
PID: WIC-1SHDSL-V3     , VID: V02 , SN: FOC132041KD

View 4 Replies View Related

Cisco WAN :: 1841 - SNMP OID For Interface Utilization

Jan 13, 2013

I have a cisco 1841, Im trying to write an app which will get the Interface Utilization on my 2 atm interfaces and fast eth 0/0 interface.
 
I’ve been reading up and have got as far as downloading the codeplex snmp library project. I’m using the snmpget app to get details off my 1841 successfully, but I now need to know the OID for interface utilization and how to define which interface to get.

View 1 Replies View Related

Cisco Firewall :: Block Pings On Outside Interface Of ASA 5505?

May 2, 2013

I was asked to block pings from the internet to the outside interface of our ASA-5505 firewall.  I found a post that said to enter "icmp deny any outside", however that does not do it.
 
I created an ACL to try and do the trick, also to no avail:
 
access-list outside_in extended permit icmp any any echo-reply
access-list outside_in in interface outside 
access-group outside_in in interface outside

View 8 Replies View Related

Cisco Firewall :: ASA5510 - Block IP Address From Outside Interface

Jun 23, 2011

Recently, I've been having significant problems with denial of service on our ASA-5510. Two IP addresses in particular attack my ASA regularly. What kind of rule do I need to create to deny these IP's access to my firewall?

View 4 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved