port based access-list on cisco 2800 router

By srinivas.narava ·
Dear Friends,

I have a 2800 router and tried so many ways to block the unwanted multiple sites on my office network..........
Like access list ip based, null0 routing and policy map.........

Faced issues with below config
1. Creating Access-list........ very deficulty to block the sites........ with https those sites will be opend, and we cant block all the IPs

2. Creating null0 routing...... I it also a bit deficult the block maximum sites.......becuase we can't fiend all IPs for those sites

3. Policy map.. with policy map we can only 1site we can block, but not more than one........

I heard that port based routing or port based access-list are the best ways to stop the websites in my local network..
for this one i need to map the site to unsued ports then i need to null rouging or need to create the access-list........

Plz advice me which is best way and what are the config steps?

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Answers

Collapse -

Overall that is the most difficult and least effective approach

by robo_dev In reply to port based access-list on ...

Even the most basic proxy server (SafeSquid. Squid, WebSense Express) can do that 100% easier and 200% more effective.

You can also use a third-party DNS service like DynDNS, Google, or OpenDNS to automatically filter requests at the DNS level.

Related Discussions

Related Forums