Hi Ina,
You will not be able to browse with this access-list because you are only allowing a number of incoming ports. The ports that browsers use to communicate with web servers are dynmically allocated. So this won't work.
What you might be able to do is probably install a SOCKS server and configure the router to allow incoming traffic for the SOCKS server to get through the router using extended ACLs.
Hope this helps.
Regards,
Jeffrey
-----Original Message-----
From: Ina Patricia Lopez
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: 4/30/2001 12:41 PM
Subject: [plug] OT: cisco router access list
hi!
trying to implement this access-list to my router but cant browse
though can resolve dns.
!
access-list 123 permit tcp any any eq ftp
access-list 123 permit tcp any any eq smtp
access-list 123 permit tcp any any eq domain
access-list 123 permit udp any any eq domain
access-list 123 permit tcp any any eq www
access-list 123 permit tcp any any eq 443
access-list 123 deny tcp any any
access-list 123 deny udp any any
access-list 123 permit ip any any
!
in s0
ip access-group 123 in
what's keeping me out from browsing?
thanks for your help.
ina patricia
__________________________________________________
Do You Yahoo!?
Yahoo! Auctions - buy the things you want at great prices
http://auctions.yahoo.com/
_
Philippine Linux Users Group. Web site and archives at
http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to
[EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
