Cisco Community
English
Register
LEARN MORE about Cisco's cybersecurity announcements this week
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
2392
Views
1
Helpful
3
Replies
Highlighted
efrazee
efrazee Beginner
Beginner
‎12-04-2012 04:04 PM
‎12-04-2012 04:04 PM

Block all Russia IP Addresses

Recently we have been taksed buy C level executives to block all ip communication to Russia. They are about 65,000 (CIDR aggregated) public ip addresses in China. 

I dont want to manage an ACL with 65,000 entries not to mention how much larger it gets to add other countries.

Any suggestions out there?

Thank you             

Labels:
Everyone's tags (6)
0 Helpful
Reply
1 ACCEPTED SOLUTION

Accepted Solutions
Erik Kaiser
Erik Kaiser Cisco Employee
Cisco Employee
‎12-19-2012 09:21 AM
‎12-19-2012 09:21 AM

Block all Russia IP Addresses

Hi ,

The WSA can block the IPs based on CIDR if you create a custom URL category add it to a access policy and set the custom URL category in the access policy to block.

Sincerely,

Erik Kaiser
WSA CSE
WSA Cisco Forums Moderator

Sincerely, Erik Kaiser WSA CSE WSA Cisco Forums Moderator

View solution in original post

0 Helpful
Reply
3 REPLIES 3
Leo Laohoo
Hall of Fame Community Legend Leo Laohoo Hall of Fame Community Legend
Hall of Fame Community Legend
‎12-04-2012 05:55 PM
‎12-04-2012 05:55 PM

Block all Russia IP Addresses

Duplicate post #1.

Reply
Erik Kaiser
Erik Kaiser Cisco Employee
Cisco Employee
‎12-19-2012 09:21 AM
‎12-19-2012 09:21 AM

Block all Russia IP Addresses

Hi ,

The WSA can block the IPs based on CIDR if you create a custom URL category add it to a access policy and set the custom URL category in the access policy to block.

Sincerely,

Erik Kaiser
WSA CSE
WSA Cisco Forums Moderator

Sincerely, Erik Kaiser WSA CSE WSA Cisco Forums Moderator

View solution in original post

0 Helpful
Reply
efrazee
efrazee Beginner
Beginner
‎12-19-2012 12:46 PM
‎12-19-2012 12:46 PM

Block all Russia IP Addresses

Hi Erik,

We have an IronPort S370. Are you saying that I can create a custom URL category on the IronPort to accomplish this?

Thank you

0 Helpful
Reply
Latest Contents
New Cisco Cybersecurity Report: Consumer Data Privacy Survey
Created by Kelli Glass on 11-21-2019 11:38 AM
0
0
0
0
Cisco Privacy Survey highlights the emergence of “Privacy Active” consumers. People care about privacy, but to what extent does it guide their consumer behavior and their actions to protect their personal information? In our new Cisco Customer Privac... view more
Email Security - what capabilities does it provide and how c...
Created by ben.greenbaum on 11-20-2019 07:29 AM
0
0
0
0
Threat Response integrates with Cisco Email Security in one of two ways: Directly from the ESA, or via an SMA. Each has its own module, but either will bring email visibility into your investigations performed in Threat Response.   Via an SMA: The S... view more
Announcing Cisco Identity Services Engine 2.7
Created by yshchory on 11-19-2019 05:40 AM
0
0
0
0
  Earlier this year, we released Cisco Identity Services Engine (ISE) 2.6. It delivered a broad new set of features and greater scale - a big stride for both better NAC services that ISE delivers and better Software-Defined Access. Today, we’re thril... view more
Integrating Cisco ISE with Cisco Meraki Systems Manager
Created by Timothy Abbott on 11-18-2019 10:33 AM
0
0
0
0
Integrating Cisco Identity Services Engine with Cisco Meraki Systems Manager   Tim Abbott Technical Marketing Engineer, Cisco Systems, Inc. November 2019     Overview Cisco Meraki Systems Manager is a cloud base endpoint management solu... view more
ISE 2.7 Release
Created by thomas on 11-18-2019 10:16 AM
0
0
0
0
      Download Existing customers may download the Cisco Identity Services Engine (ISE) 2.7 which was released on November 18, 2019. For 90-day evaluations of ISE, please see How to Get ISE Evaluation Software & Licenses.   Fea... view more
CreatePlease to create content
Discussion
Blog
Document
Video
Content for Community-Ad
August's Community Spotlight Awards