03-29-2019 02:14 AM
Hi,
Is it possible to configure DNS-name in access lists in ASR1006-X and ISR451-X like in ASA as shown in this link:
https://community.cisco.com/t5/security-documents/using-hostnames-dns-in-access-lists-configuration-steps-caveats/ta-p/3123480
Does IOS XE support this? If not, does anyone know when it can be supported?
03-29-2019 03:10 AM
Hello,
interesting subject. XE supports this I think, the syntax is below:
Security Configuration Guide: Access Control Lists, Cisco IOS XE Release 3E
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_data_acl/configuration/xe-3e/sec-data-acl-xe-3e-book/sec-cfg-fqdn-acl.html#reference_B3B73D90445F442AB1C37E1A20BB3FEA
04-02-2019 04:31 AM
Thank you for the link. The problem is:
Configuring an FQDN ACL feature allows you to configure and apply an ACL to a wireless session based on the domain name system (DNS).
This is a service provider core network. No wireless sessions exist.
02-25-2021 09:36 PM
Hello Community,
I also try to find the trueth about FQDN ACLs on ISR router and I also only found the link posted above with the wireless session topic.
Is there another possibility?
Thanks
Sebastian
02-26-2021 01:01 AM
I looked around, the feature still seems to be available only on the ASA, and for wireless networks, unfortunately...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
