Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
386
Views
0
Helpful
1
Replies

How to restrict access to chat and messanger pages?

sguerrero
Level 1
Level 1

‎06-10-2002 07:32 PM - edited ‎03-10-2019 01:23 PM

I am using a pix 501 with IOS version 6.1.2 and I have "gold" users (who need to be able to navigate without any restriction. The access-lists are like these:

access-list acl_in permit tcp host 192.168.0.70 any

access-list acl_in permit udp host 192.168.0.70 any

For the rest of the users I want to restrict chat pages and messanger, they only need to navigate and use http/s. The access-lists for these users are:

access-list acl_out permit tcp any host 192.168.0.5 eq www

access-list acl_out permit tcp any host 192.168.0.5 eq 443

access-list acl_in permit udp any any eq domain

I have used this same configuration and getting the results I want in a pix firewall 520 version 6.0.1, but now I am using a pix firewall 501 version 6.1.2 and the results are not the same, I am still able to access to chat and open messanger. How could I solve my problem.

If anyone has an advise I would appreciate it!

Thanks

Labels:
0 Helpful
1 Reply 1

mmellet
Level 3
Level 3

‎06-17-2002 05:52 AM

Most chat clients will use port 80 if all othe ports are blocked. You might want to dig into your debugging log files to see what is actually happening.

0 Helpful
Customers Also Viewed These Support Documents