We are going to use cisco 2511's with 16 ports each, cisco ISO 11.0,
tac_plus 2.1
for dialup control and accounting. I planed to simply
create an access-list for the 16 asyc ports something like this:
***** CISCO 2511 ISO 11.0 ******
access-list 101 deny tcp 0.0.0.0 255.255.255.255 0.0.0.0
255.255.255.255 eq 80
! which results in :
access-list 101 deny tcp any any eq www
!
line 1 16
access-class 101 in
! Don't know what else to do. FIN
I as yet have not been able to forcefully deny access to port 80
on my ppp dial-up connections.
I feel that my problem is with tac_plus, I've tried acl's of all
types and they haven't worked.
What I want, is to force these 16 tacacs controled ppp dial-up lines to
use
the proxy-server configuration of their browser and an alternate port
by not allowing any requests to port 80.
Someone else has to have done this, Thank you for your help.
Ed
--Received on Sun Feb 09 1997 - 13:55:42 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:34:24 MST