networking-forum.com - View topic - ALLOW WEBSITE WITH DOMAIN NAME THROUGH ZBF

Board index » Cisco Networking » Cisco Security

All times are UTC - 6 hours [ DST ]

ALLOW WEBSITE WITH DOMAIN NAME THROUGH ZBF

Page 1 of 1

[ 12 posts ]

Print view

Previous topic | Next topic

Author

Message

yadhutony

Post subject: ALLOW WEBSITE WITH DOMAIN NAME THROUGH ZBF

Posted: Tue Jul 17, 2012 12:09 am

New Member

Joined: Mon Jul 09, 2012 6:58 am
Posts: 31

Hi
I have created a zone based firewall and restricted majority of users from accessing internet and allowed a few users to have full internet access.
Now few of my restricted users need to access some particular websites. But when i tried to give access using the ip address of the website it seems to be working for only few sites since some websites have got numerous ip addresses. How will i give access to some sites like google.com using domain name in ZBF?

Thanks in advance.
Regards,
Tony

_________________
http://yadhutony.blogspot.com

Top

mellowd

Post subject: Re: ALLOW WEBSITE WITH DOMAIN NAME THROUGH ZBF

Posted: Tue Jul 17, 2012 1:29 am

CCIE #38070

Joined: Wed Jun 18, 2008 7:49 am
Posts: 12433
Location: London, UK
Certs: CCIE ,CC-NP/IP, JNCIP-SP, JNCIS-ENT, BC-/SPNE/NP

WHY CAPS???

_________________
www.mellowd.co.uk/ccie/

Top

Project2501

Post subject: Re: ALLOW WEBSITE WITH DOMAIN NAME THROUGH ZBF

Posted: Tue Jul 17, 2012 1:36 am

Post Whore

Joined: Thu Apr 17, 2008 6:44 pm
Posts: 6049
Location: Perth, WA
Certs: CCNA

I'm kind of disappointed the body of the post wasn't in caps.

And yet interested to see the outcome of this.

_________________
- Pete

Top

Reggle

Post subject: Re: ALLOW WEBSITE WITH DOMAIN NAME THROUGH ZBF

Posted: Tue Jul 17, 2012 3:41 am

Post Whore

Joined: Sun May 15, 2011 4:16 pm
Posts: 1423
Location: Belgium
Certs: CCNA Security, CCNP

http://networketiquette.net/

_________________
http://reggle.wordpress.com

Top

yadhutony

Post subject: Re: ALLOW WEBSITE WITH DOMAIN NAME THROUGH ZBF

Posted: Tue Jul 17, 2012 5:40 am

New Member

Joined: Mon Jul 09, 2012 6:58 am
Posts: 31

I do apologize very sincerely for the mistakes I have made. Can anyone please help me out over here?

_________________
http://yadhutony.blogspot.com

Top

Reggle

Post subject: Re: ALLOW WEBSITE WITH DOMAIN NAME THROUGH ZBF

Posted: Tue Jul 17, 2012 6:23 am

Post Whore

Joined: Sun May 15, 2011 4:16 pm
Posts: 1423
Location: Belgium
Certs: CCNA Security, CCNP

Unfortunately I'm not sure how to do that, but wasn't it something like the 'server name' command?

_________________
http://reggle.wordpress.com

Top

DanC

Post subject: Re: ALLOW WEBSITE WITH DOMAIN NAME THROUGH ZBF

Posted: Tue Jul 17, 2012 6:56 am

Ultimate Member

Joined: Mon Oct 06, 2008 8:01 am
Posts: 669
Certs: CCNA,CCNP

Take a look at this:

http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_tech_note09186a00808bc994.shtml

Top

yadhutony

Post subject: Re: ALLOW WEBSITE WITH DOMAIN NAME THROUGH ZBF

Posted: Tue Jul 17, 2012 7:08 am

New Member

Joined: Mon Jul 09, 2012 6:58 am
Posts: 31

DanC wrote:

Take a look at this:

http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_tech_note09186a00808bc994.shtml

Hi,
I configured the zone based firewall by referring the same document. My requirement is to allow google to some particular IP's in my network. How will I do it using the ACL in zone based firewall? If I put the url in the configuration it resolves to only a single IP.

Regards,
Tony

_________________
http://yadhutony.blogspot.com

Top

michoudi

Post subject: Re: ALLOW WEBSITE WITH DOMAIN NAME THROUGH ZBF

Posted: Tue Jul 17, 2012 8:20 am

Senior Member

Joined: Wed Sep 01, 2010 9:46 pm
Posts: 357
Location: USA
Certs: CCNA, 642-642, 642-627

yadhutony wrote:

DanC wrote:

Take a look at this:

http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_tech_note09186a00808bc994.shtml

A domain name will only resolve to a single IP at any given time. What I want to know is what good is a google search if the search results are blocked by your firewall?

Top

yadhutony

Post subject: Re: ALLOW WEBSITE WITH DOMAIN NAME THROUGH ZBF

Posted: Tue Jul 17, 2012 11:44 pm

New Member

Joined: Mon Jul 09, 2012 6:58 am
Posts: 31

michoudi wrote:

yadhutony wrote:

DanC wrote:

Take a look at this:

http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_tech_note09186a00808bc994.shtml

A domain name will only resolve to a single IP at any given time. What I want to know is what good is a google search if the search results are blocked by your firewall?[/quo
Could you please tell me how will i allow Gmail to some particular users? If I put the url in the configuration it resolves to only a single IP.

_________________
http://yadhutony.blogspot.com

Top

mellowd

Post subject: Re: ALLOW WEBSITE WITH DOMAIN NAME THROUGH ZBF

Posted: Wed Jul 18, 2012 1:24 am

CCIE #38070

Joined: Wed Jun 18, 2008 7:49 am
Posts: 12433
Location: London, UK
Certs: CCIE ,CC-NP/IP, JNCIP-SP, JNCIS-ENT, BC-/SPNE/NP

Why not use a proxy?

_________________
www.mellowd.co.uk/ccie/

Top

yadhutony

Post subject: Re: ALLOW WEBSITE WITH DOMAIN NAME THROUGH ZBF

Posted: Wed Jul 18, 2012 1:48 am

New Member

Joined: Mon Jul 09, 2012 6:58 am
Posts: 31

Please check the link https://supportforums.cisco.com/docs/DOC-17014.
Even I feel proxy is the best method to solve this. Thank you for your replies.

_________________
http://yadhutony.blogspot.com

Top

Page 1 of 1

[ 12 posts ]

Board index » Cisco Networking » Cisco Security

All times are UTC - 6 hours [ DST ]

Who is online

Users browsing this forum: No registered users and 28 guests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum