> I am using 172.16.0.0 in my internal network and I want to block these ip's > 172.16.20.12 > 172.16.20.14 > 172.16.20.23 > 172.16.20.120 > 172.16.20.45 > 172.16.20.67 > 172.16.20.89 >
Make an acl as, acl blockip src 172.16.20.12/32 172.16.20.14/32 172.16.20.23/32 172.16.20.120/32 172.16.20.45/32 172.16.20.67/32 172.16.20.89/32 > from accessing "mail.yahoo.com" ,hotmail.com (May be regex required > for *.mail.yahoo.* , *.hotmail.* , and *.messenger.msn.com ) and MSN > Messenger.. Again make a new acl as, acl blocksite dstdomain .mail.yahoo.com .hotmail.com .messenger.msn.com > How should I proceed with this setup so that only these users are > effected and rest of all are allowed to brows any website on Internet > cloud. Make http_access rule as, http_access deny blockip blocksite Best Regards -Muthukumar