How to create a Access list on core switch to bloxk all Internet Traffic & allow some specific Internet Traffic
Hellp Everyone,
I am trying to create a Access-List on my Core Switch, in which I want to allow few internet website & block the rest of them.
I want to allow the whole Intranet but few intranet websites also needs access to the internet.
Can we create such Access-List with the above requirement.
I tried to create the ACL on the switch but it blocks the whole internet access.
i want to do it for a subnet not for a specific IP.
Can someone help me in creating such access list.
Thanks in Advance
The exact syntax depends on your subnets and how they connect to the Internet. If you can share a simple diagram that would be much more informative.
In general just remember that access-lists are parsed from the top down and as soon as a match is found, the processing stops. So you put the most specific rules at the top. also, once you add an access-list, there is an implicit "deny any any" at the end.
The best approach is to create some network object-groups and then refer to them in your access list. From your description, that would be something like three object-groups - one for the Intranet (Intranet), one for the allowed servers that can use Internet (allowed_servers), and a third for the permitted Internet sites (allowed_sites).
You would then use them as follows:
ip access-list extended main_acl
permit any object-group intranet any
permit object-group allowed_servers object-group allowed_sites any
interface vlan
ip access-group main_acl in
More details on the syntax and examples can be found here:
http://www.cisco.com/en/US/docs/ios-xml/ios/sec_data_acl/configuration/15-2mt/sec-object-group-acl.html#GUID-BE5C124C-CCE0-423A-B147-96C33FA18C66
Similar Messages
-
How to create a Custom List without the column "Title" ?
Maybe this one is easy as it sounds, I just want to know how to create a little list for my SharePoint application featuring 3 columns:
1 - User Name (this should be Person type - UNIQUE + Required)
2 - Report (Memo - Required)
3 - Status (Choice + Required)
The list will be used to allow the users to submit a weekly report and I don't want to include the title because there is no use to me, I know I can hide the column by customizing the list but this sounds very amateur even for a newbie like me (yeah... sounds
so cheap!), since I've been reading a lot about custom content types and I still didn't get the chance to use this properly I was wondering how I could put them to use and I guess the example here would be the best right?
I really spent some time trying but I always end getting the Title even when I try to use custom content types so I'm really giving up and asking for some help at this point.
Thanks a lot for the help!!!Yes, you can do that. If you need a different content type with your custom fields. Following are the steps : http://www.dotnetcurry.com/ShowArticle.aspx?ID=620
After creating your custom Content Type, Click on the 'Title' filed in your custom content type.
In the 'Column Settings' make it 'Hidden (Will not appear in forms)' and click ok.
Now add this content type to your list/library.
In the list/Library go to setting and 'Advance settings' and make the 'Allow management of Content Type?' as 'yes' and click ok.
Now make default content type not visible from 'Change new button order and default content type' link in the settings page of list/library, and your contet type as 'Default'.
Create a new view, remove the 'Title' field and make that view as 'dafault' view, you can delete the 'All Items' view also if required.
Now whenever user come to that list/Library they will not see the title column and also will not appear in the 'New Item'.
Note : The 'Title' field is mandatory in all the list/library and by default added to the 'All Item' view. So, by doing above steps you are creating a new content type where 'Title' is not mandatory and also not added in default view.
get2pallav
Please click "Propose As Answer" if this post solves your problem or "Vote As Helpful" if this post has been useful to you. -
How to create the Access sequence for the Vendor+material+plant combination
Hi all
Please let me know How to create the Access sequence for the Vendormaterialplant combination..
Whats the use? What its effect in purhcase and taxe..
brief me pleaseHi,
you are asked to maintain the access sequence for the tax condition for which you are putting 7.5%.
goto OBQ1 or img..financial accounting new...global settings.... taxes on sales and purchases ......basic settings.....
find the tax condition type. see in it which access sequence is attached.
if there is none then use JTAX used for taxes in India.
or you can create the similar one for your.
to create the same goto OBQ2.
new entry or copy JTAX.
and assign the access sequence to condition type.
this will resolve your problem if you just need to assign the access sequence.
regards,
Adwait Bachuwar -
How to create a pulldown list in numbers
how to create a pulldown list in numbers
Here is it:
Open Applescript editor
Copy the entire script and paste it into Applescript Editor
Compile it
Read the instructions at the top of the script
Run the script, following the instructions.
You can save the script and it will be available in the Scripts menu (on the right side of the menu bar where Time Machine , Airport, and all those icons are).
Copy and paste all of what is below:
-- Script to populate a Numbers pop-up list.
-- Instructions:
-- GUI scripting must be on in System Preferences
-- Create a list of items. Must be a contiguous range of cells in a table.
-- Select the range of cells to use as items in the popup.
-- Run the script.
-- A dialog box will appear asking you to select which cells you want to turn into pop-ups
-- Select the cells then click OK on the dialog box
set tValues to my doThis(1) -- get values of the selection
if tValues is not "" then
activate
display dialog "Select the cells where you want to create the PopUp." & return & "After that, click on the 'OK' button."
my doThis(tValues) -- set the cell format of the new selection to "PopUp Menu" and set the values of the each menu item
tell application "Numbers" to display dialog "Done"
else
tell application "Numbers" to display dialog "You must select the cells in a table before running this script."
end if
on doThis(n)
tell application "Numbers"
set tTables to (tables of sheets of front document whose its selection range is not missing value)
repeat with t in tTables -- t is a list of tables of a sheet
if contents of t is not {} then -- this list is not empty, it's the selected sheet
set activeTable to (get item 1 of t)
if n = 1 then return value of cells of selection range of activeTable -- return values of the selection
set format of (cells of selection range of activeTable) to pop up menu -- set the format to pop up menu
return my setValuePopUp(n) -- set value of each menu item
end if
end repeat
end tell
return ""
end doThis
on setValuePopUp(L)
tell application "System Events"
tell process "Numbers"
set frontmost to true
delay 0.3
set inspectorWindow to missing value
set tWindows to windows whose subrole is "AXFloatingWindow"
repeat with i in tWindows
if exists radio group 1 of i then
set inspectorWindow to i
exit repeat
end if
end repeat
if inspectorWindow is missing value then
keystroke "i" using {option down, command down} -- Show Inspector
else
perform action "AXRaise" of inspectorWindow -- raise the Inspector window to the front
end if
delay 0.3
tell window 1
click radio button 4 of radio group 1 -- the "cell format" tab
delay 0.3
tell group 2 of group 1
set tTable to table 1 of scroll area 1
set tc to count rows of tTable
set lenL to (count L)
if tc < lenL then -- ** add menu items **
repeat until (count rows of tTable) = lenL
click button 1 -- button [+]
end repeat
keystroke return -- validate the default name of the last menu item
else if tc > lenL then -- ** remove menu items **
repeat while exists row (lenL + 1) of tTable
select row (lenL + 1) of tTable
click button 2 -- button [-]
end repeat
end if
tell tTable to repeat with i from 1 to lenL -- ** change value of each menu item **
set value of text field 1 of row i to item i of L
end repeat
end tell
end tell
end tell
end tell
end setValuePopUp -
What are message tables and their role?How to create and access them ?
hi,
Can any body clarify me about What are messaging tables and their role(use) in DataBase?How to create and access them ?
Thanks in advance
GopiIf you have doubt that's you have an idea. So, explain your idea please, because I don't see what are "messaging tables".
Did you say about Oracle database ? Apps ?...
Nicolas. -
How to Create Interactive report lists for the gross sales, credit ....
How to Create Interactive report lists for the gross sales, credit returns, and gross weight for the customer for the current year and comparing the same with that of the previous year for the same period.....
plz tell me steps to accomplish this....plz ...give me the detail description..plz......many many thnx in advance...Hi raja,
Display a checkbox , customer number on the basic list and also set a GUI STATUS on the basic list.....
Select the customer by checking the checkbox and click on the button you create in the GUI status....
Write the desired code to be displayed in
AT USER-COMMAND even checking the sy-ucomm....
so this would make you to into interactive list...
Hope this would help you.
Regards
Narin Nandivada -
I'm attempting to create an access list
I'm attempting to create an access list that allows traffic to the internet but denies access to any internal networked ip space. This will be applied to a vlan interface as an "in". My thought is that it should deny traffic to the 172."30,29,28" space from any but then permit them to any other address. Can someone please confirm or refute my acl list understanding? Thanks in advance. - Kyle
ip access-list extended TEST-IN
deny ip any 172.30.0.0 0.0.255.255
deny ip any 172.29.0.0 0.0.255.255
deny ip any 172.28.0.0 0.0.255.255
permit ip host 10.20.0.6 anyHi Kyle,
The ACL rules would work fine. but consider the following guidelines when creating ACL on IOS.
1) if you are permitting 1 host or a smaller domain and denying a subnet, then use the permit before denying.
Example:
ip access-list extended TEST-IN
permit ip host 10.20.0.6 any
deny ip any 172.30.0.0 0.0.255.255
deny ip any 172.29.0.0 0.0.255.255
deny ip any 172.28.0.0 0.0.255.255
And also, this would permit the 10.20.0.6 to the 172.30/29/28 as well.
Reason: ACL works on hit and trial basis. If match is found, it would not go beyond.. so to minimize the overhead and cpu usage, prefer to get smaller rules on top before major denies/permits.
2) In case of denies.
example:
ip access-list extended TEST-IN
deny ip host 10.20.0.6 any <<<<<<<<<<<<<< the smaller entries come first.
permit ip any 172.30.0.0 0.0.255.255
permit ip any 172.29.0.0 0.0.255.255
permit ip any 172.28.0.0 0.0.255.255
Saves computation time and processing as well.
Hope that helps.
Abhishek
CCIE 35269 -
How to create a dropdown list to list the values from two different tables?
Hi,
I have the following requirement:
1. I have to create a dropdown list to display all the values from the second column of a table.
2. Another dropdown list to display all the values from the second column of another table.
3. A text box should help me to add the selected values.
How to get this done in a PDF? Please help.
Regards,
LathaIs this a LC form? Because Acrobat forms have no concept of tables, just
individual fields... -
How to create a Printer List in Forms 4.5
How can I create a Printer list on Forms 4.5 to show all
available printers?
Thanks.
nullI fear there is no direct solution.
May be this is a work-around:
1. Apply the older built-in: Display_item. You can't disable the item with display_item, but you can change the visual attribute and show the user that this item should not be checked.
2. To be shure that the user doesn't ignore this "disable", you need a trigger, which resets the item to the proper value after an illegal change. -
I have a table in sql with employee_num and I need to create a list and link that list to this table to make changes to table based on values user enter or selects.
Hi,
In addition, you could refer to one similar thread for related information:
http://social.technet.microsoft.com/Forums/sharepoint/en-US/8ee8a7b2-ddfc-4654-b84e-b062aeb527ae/how-to-create-exernal-list-in-sharepoint-which-fetch-data-from-multiple-sql-table?forum=sharepointgeneral
Regards,
Rebecca Tu
TechNet Community Support -
How to create Dynamic Selection List containg file names of a directory?
Hi,
I need a Selection List with a Dynamic List of Values containing all file names of a particular directory (can change through the time).
Basically, I need an Iterator over all file names in a directory, which could be used for Selection List in a JSF form.
This iterator has nothing to do with a database, but should get the names directly from the file system (java.io.File).
Can anybody tell me how to create such an iterator/selection list?
I am working with JDeveloper 10.1.3.2, JSF and Business Services.
Thank you,
IgorCreate a class like this:
package list;
import java.io.File;
public class fileList {
public fileList() {
public String[] listFiles(){
File dir = new File("c:/temp");
String[] files = dir.list();
for (int i = 0; i < files.length; i++) {
System.out.println(files);
return files;
Right click to create a data control from it.
Then you can drag the return value of the listFiles method to a page and drop as a table for example.
Also note that the Content Repository data control in 10.1.3.2 has the file system as a possible data source. -
How to create an email list server solution with java
hi all
I would like to create a email list service with java.
(when I say email list service, I mean , you send email and everyone who subscribes to the list receives the email automatically or the email is held in a queue for approval )
this solution would have to be integrated with the emailing standards .
Could someone share with me how one would create a list service with java and how it would work with the email and pick it up ?
stephenor if there is an open source solution please let me know
stephen -
I have created a xslt list view webpart but I does not have UI as SharePoint 2013 list view UI.
how I can have it.
Ahsan RanjhaHi Ahsan,
According to your description, my understanding is that the UI is different between XSLT web part and List View web part.
Per my knowledge, the List View web part is a kind of the XSLT list view web part which uses XSLT to display data on the page.
http://sharepoint-videos.com/list-view-and-data-view-web-parts/
How did you add the XSLT web part and the List View web part?
Could you please provide a screenshot of the two web parts?
Best regards.
Thanks
Victoria Xia
TechNet Community Support -
How to manage large access-lists on FWSM
Team I have a rather large access-list in one of my firewalls and was wondering if anyone has any rules of thumbs to go by when building a complex access lists. I currently use object groups but what is a good rule for acls with servers, users and diffent needs for access?
We use object-groups as well. We typically create an object for source servers (if more than 1), the ports (if more than 1 or 2) and another group for destination server(s). We have a very restrictive security policy so each rule must be specific. I think it makes it hard to see what the ACL's really do, but it shortens the config.
Hope that helps. -
How to create and access Global variable in Microsoft Lightswitch(VB)?
How to create an integer datatype Global variable in Microsoft Lightswitch 2011(VB) and access it in pre-process query to set value? Can it be accessed and set like Me.Application.<MyGlobalVariable> = 999
Thnx.
jajjaar123If you want to create integer datatype Global variable in lightswitch, you can refer to (Eric Erhardt) blog
Create and Use Global Values In a Query
Maybe you are looking for
-
Touchpad of the Zen Touch doesn´t react anymore..
Hey all, I got my old Zen Touch(20GB) for maybe more than 2 years and it was my best friend at all the time,never had any problems with it... But suddenly(yesterday) the touchpad is broken... Nothing happend... hasn?t fall to the ground or damaged...
-
Erreur lors de la création d'un executable Labview 10sp1
Bonjour, Je travaille actuellement sur un projet relativement imposant, sous labview 10sp1. Le projet étant assez conséquent, j'ai voulu en faire un executable. J'ai alors une fenetre ( voir piece jointe) qui apparait et me dit: "une erreur est surve
-
Please help me find a way to fix this problem.
-
Identification of additional Invalid Objects of Apps Patches in Test mode!
All, Could anyone please share if there is an option to "Identify additional Invalid Objects creation while applying Apps Patches in Test mode!" EBS R12.1.1 DB:11.1.0.7 O/S:Linux Red Hat Thanks for your time! Regards,
-
Can't find Business Object for Functional Location BOM in BAPI
Hi all, I've to make Upload Program through BAPI for Functional Location BOM,for making that Upload i can't find BUSINESS OBJECT for FUNCTIONAL LOCATION ,Equipment BOM and Fleet Object (Vehicle).Kindly tell what Business Object should i used to creat