cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2511
Views
0
Helpful
4
Replies

FQDN in access lists

RahmaSallm
Level 1
Level 1

Hi,

 

Is it possible to configure DNS-name in access lists in ASR1006-X and ISR451-X like in ASA as shown in this link:

 

https://community.cisco.com/t5/security-documents/using-hostnames-dns-in-access-lists-configuration-steps-caveats/ta-p/3123480

 

Does IOS XE support this? If not, does anyone know when it can be supported?

 

4 Replies 4

Hello,

 

interesting subject. XE supports this I think, the syntax is below:

 

Security Configuration Guide: Access Control Lists, Cisco IOS XE Release 3E

 

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_data_acl/configuration/xe-3e/sec-data-acl-xe-3e-book/sec-cfg-fqdn-acl.html#reference_B3B73D90445F442AB1C37E1A20BB3FEA

Thank you for the link. The problem is:

 

Configuring an FQDN ACL feature allows you to configure and apply an ACL to a wireless session based on the domain name system (DNS).

 

This is a service provider core network. No wireless sessions exist. 

smolit
Level 1
Level 1

Hello Community,

I also try to find the trueth about FQDN ACLs on ISR router and I also only found the link posted above with the wireless session topic.

Is there another possibility?

 

Thanks

Sebastian

Hello,

 

I looked around, the feature still seems to be available only on the ASA, and for wireless networks, unfortunately...

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: