Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
430
Views
9
Helpful
2
Replies

Site blocking

olly ahmed
Level 1
Level 1

‎11-19-2015 04:58 AM - edited ‎03-01-2019 02:57 PM

How to block facebook(including android apps for facebook) completely from my network.Please share a sample configuration.

Labels:
0 Helpful
2 Replies 2

Vinit Jain
Cisco Employee
Cisco Employee

‎11-20-2015 09:05 PM

You can use an ACL to block a website matching the FQDN. but Even in that case, the website might be reachable as a FQDN might be mapped to multiple IP addresses. 

Please refer to the below document as it shows an example to block a website.

https://supportforums.cisco.com/document/66011/using-hostnames-dns-access-lists-configuration-steps-caveats-and-troubleshooting#Multiple_hostnames_resolve_to_the_same_IP_address

Hope this helps.

Regards

Vinit

Thanks
--Vinit

Vinit Jain
Cisco Employee
Cisco Employee
In response to Vinit Jain

‎11-20-2015 09:07 PM

Though, as a sample configuration, you can use as below:

access-list 101 deny tcp any host facebook.com eq www
access-list 101 permit ip any any

(Interface applied to):
int fa 0/1
ip access-group 101 out

But you will still need to deny any other IP's that the website may have (either for mobile app or the web).

Thanks

Vinit

Thanks
--Vinit
Customers Also Viewed These Support Documents