INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Jobs

cisco 1841 configur to allow only some ip or application in 2 lan

cisco 1841 configur to allow only some ip or application in 2 lan

cisco 1841 configur to allow only some ip or application in 2 lan

(OP)
Hi,
I have a cisco 1841 with 2 FE ports I am going to connect it to 2 separate LAN's.

Lan1 192.168.17.x
Lan2 10.10.255.x

not sure if this is possible but I want to allow only some type of files to be transmitted from Lan1 pc's to Lan2 server (ex .mov) is this something I can do on cisco 1841?

if not is there anything else I can do?

RE: cisco 1841 configur to allow only some ip or application in 2 lan

Your router is a layer 3 device. It can see IP packets. It can therefore filter by IP address and/or by port.
If you identify the ports that particular applications are using, then you could filter those ports out and prevent them from working.
Your layer3 device has no visibility of what the packets belong to at the application level. To identify files by their file extension, you need a layer-7 device, ie, an application.
Your Windows OS, or your security software, can presumably be configured by the administrator to prevent certain files from being opened.

RE: cisco 1841 configur to allow only some ip or application in 2 lan

(OP)
Thanks for the info VinceWhirlwind as i figured its not possible.

so in this case lets say i have PC on 192.168.17.30 and i only want that pc to communicate with a server on 10.10.255.10 what would i have to do?
would i handle this using access list? and static routing?

RE: cisco 1841 configur to allow only some ip or application in 2 lan

Depends on the environment.

You could prevent that PC from accessing the internet with a route (or, lack of a route), or an access list.

An access list could be fairly simple.
You should
allow 192.168.17.30-->10.10.255.10
deny 192.168.17.30-->any
allow any any

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members!

Resources

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close