Web filtering with Cisco Routers

Ranbeckycr_2 · ‎10-16-2013

Experts,

Is there any sort of webfiltering that can be applied to my internal network using the Cisco Router?

Hopefully something that is already included in the Cisco IOS or an Open Source solution that can be integrated to Cisco that doesn't involve spending money.

If we need to pay I guess it will be ok, but I don't want something as expensive as websense.

Any ideas are appreciated.

Thank you,
Randall

cadet alain · ‎10-16-2013

Hi,

For http traffic you can use NBAR with MQC:http://networklessons.com/quality-of-service/block-website-with-nbar-on-cisco-router/

Regards

Alain

Don't forget to rate helpful posts.

Ranbeckycr_2 · ‎10-16-2013

Is it possible to graph this blocked results per user?

Is it possible to not block and only monitor?

Thank you

sganpat · ‎10-16-2013

If you wish to only monitor, then consider enabling netflow and using a netflow product such as ManageEngine Netflow Analyser or another. You will be able to see all the conversations that network nodes are having with each other.

cadet alain · ‎10-16-2013

Hi,

I don't think you can graph the blocked sites but you can graph the http usage but not per user but per interface.

You can monitor the type of traffic along with packet count on a interface with NBAR only but you cannot monitor who is going where with this feature.Netflow would let you graph/monitor the IP addresses going to some IP addresses of webservers.

Regards

Alain

Don't forget to rate helpful posts.