Hey Scott,
Thanx for the advice, but, I have a question. Where should I put that
access list? Do I want to apply it to the inbound side of the interface
where its from the Internet to the network, or outbound on that interface?
Howard
""Scott M. Trieste"" <[EMAIL PROTECTED]> wrote in message
96v2mh$lkg$[EMAIL PROTECTED]">news:96v2mh$lkg$[EMAIL PROTECTED]...
> Howard,
>
> If you are trying to block all incoming traffic from the Internet, without
> inhibiting your outgoing network traffic use this command at the beginning
> of your ACL:
>
> permit ip any any established.
>
> This will allow all tcp/udp conversations through the firewall, as long as
> they were initiated from inside your network.
>
> Regards,
>
> Scott M. Trieste
>
> ""Howard Yuan"" <[EMAIL PROTECTED]> wrote in message
> 96v2gr$kri$[EMAIL PROTECTED]">news:96v2gr$kri$[EMAIL PROTECTED]...
> > Hi,
> >
> > I'm trying to set up a firewall on my Cisco router. I'm trying to block
> > everything from the Internet except for webpage access (port 80). But,
> when
> > I set it up to do that, I can not surf the net without putting in the
> line:
> >
> > permit ip any any
> >
> > But, doing that will allow everything to come in through the router. I
> > don't want anybody being able to come in through any port except for the
> > ones I specify. Is there anybody that know how to do that? Please tell
> me.
> > Thank you in advanced.
> >
> > Howard
> >
> >
> > _________________________________
> > FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
>
>
> _________________________________
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
