I want to limit web browsing for a specific machine, allowing all others.
Am I better off doing this on the inside or outside interface ?
How do I control the order of the commands in the access-list ? Is it just a matter of entry order ?
Is this syntax correct for the inside ?
Access-list ach-in deny tcp host 192.168.0.22 any eq 80
Access-list ach-in permit ip any any
Access-list ach-in in interface inside