Scribd
Upload
22 views7 pages

Internet Usage Control Using Router Reco

Uploaded by

Asif
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
22 views7 pages

Internet Usage Control Using Router Reco

Uploaded by

Asif
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
You are on page 1/ 7

Internet usage control using

access control techniques


Problem
• On a network infrastructure, there are 200 users. All the users
access internet through a Cisco router. It was observed that
the internet usage was very high which created problems like
slow internet, expensive internet bills etc. To solve the
problem, the network has to be redesigned which would
allow only browsing traffic and all other traffic bound to the
internet like FTP, Skype, etc should be blocked.
Network Topology Diagram.
TCP/IP addressing

• The IP address of the LAN interface of the router is configured


with the IP address 192.168.1.1

• The users are configured with the IP address starting from


192.168.1.2 – 192.168.1.201.

• The default gateway of users on the PC is configured with the


IP address 192.168.1.1.
Network design strategy

• Web browsing traffic would comprise of the protocols http,


https and dns. http and https is used by browsers and dns is
used for resolving website names into IP address.

• Without DNS, name resolution would fail and browsing


would not work.

• An access list is configured on the E0 interface as inbound


which would allow only the protocols listed above and all
other traffic is blocked.
Router Configuration Explained
• The first line configures the ACL to allow TCP port 80 for http
communication

• The second line configures the ACL to allow TCP port 443 for
allowing https communication

• The 3rd line configures the ACL to allow TCP port 443 for
allowing https communication

• The 4th line goes to the interface of the router

Copyright 2015 @
projectsinnetworking.com
Router Configuration Explained

• The 5th line applies the ACL as inbound.

• The implicit deny functionality of Cisco ACL would ensure that all
other protocols are denied automatically.

• The configurations would ensure that only http, https and dns traffic
is allowed from the network 192.168.1.0/24 to the E0 interface
through which packets bound for the internet travel.

• This would ensure that users would be unable to access any other
type of traffic apart from the protocols listed above.

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy