Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
644
Views
3
Helpful
3
Replies

DNS instead of IP in PIX access list

thomuff
Level 3
Level 3

‎01-11-2006 11:37 AM - edited ‎02-21-2020 12:38 AM

Can I use a dns entry instead of an IP address (208.134.161.5) in the following:

access-list inside1 permit ip 10.0.0.0 255.0.0.0 208.134.161.5 255.255.255.0

0 Helpful
3 Replies 3

Not applicable

‎01-11-2006 05:06 PM

0 Helpful

mheusinger
Level 10
Level 10

‎01-11-2006 05:07 PM

Hello,

You can define a DNS name within an object group and then use the group to allow/deny traffic.

Have a look at

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_command_reference_chapter09186a00801727a3.html#wp1067755

for access-list syntax and at

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_command_reference_chapter09186a00801727ab.html#wp1038172

for object-group examples.

Hope this helps! Please rate all posts.

Martin

marcus.tornhagen
Level 1
Level 1

‎01-18-2006 06:39 AM

Hi,

Hostname in the syntat referres to a hostname allready confígured host using the name command, not a FQDN (DNS name) The access-list does not do any reverse DNS lookup for a name.

Regards,

Marcus

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card