Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
532
Views
5
Helpful
2
Replies

ASA 5520 – ACL Whitelist, Deny All Outbound Traffic, Allow outbound to

mechanize
Level 1
Level 1

‎06-29-2022 12:10 PM

Hi,

 

We have a small office, about 20 clients on LAN.

I need to allow outbound (internet) traffic from:

  • Some (Group A / Guest PCs) clients to few websites / IP addresses only.
  • Some (Group B) clients to all outbound traffic (unrestricted access to internet)

I’m thinking to arrange appliances as follows:

[ISP Router with DHCP] <> [ASA5520] <> [Managed Switch] <> LAN Clients

 

Can I use Cisco ASA 5520 to achieve above?

Will appreciate if someone can direct me to the right direction how to configure ASA5520 to create a whitelist IP / URLs for few clients (LAN IPs) to allow access to few websites only, whereas other clients should be able to have full access to the internet.

 

Thanks in advance

0 Helpful
2 Replies 2

mechanize
Level 1
Level 1

‎06-29-2022 12:24 PM

I'm thinking about objects, object groups and webtype ACL to implement above, or am I wrong?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card