Hi, can you help me with this one?
Imagine I need to let a couple of Symantec security appliances (internal network) communicate on port 443 TCP to domains listed below. In my experience, I should do this based on the respective domain names (as shown below, since IP addresses change without warning).
Can someone tell me what should I consider in order to do access-lists based on domain name? Is the below correct:
.#access-list 101 permit tcp <ip_address_appliance> 0.0.0.0 swupdate.brightmail.com eq 443
swupdate.brightmail.com
register.brightmail.com
aztec.brightmail.com