The Cisco ASA firewall supports time based access-lists. Simply said, for each entry that you configure you can specify it to be valid only during a certain time or day.
Take a look at the image below:
Above we have an inside host (R1) and a HTTP server in the DMZ (R3). Let’s say that our users on the inside should not be able to access this web server during working hours. Here’s what the configuration would look like:
ASA1(config)# clock set 13:55:00 3 December 2014
First I’ll configure the clock, next step is to create a time-range:
ASA1(config)# time-range WORK_HOURS ASA1(config-time-range)# periodic weekdays 09:00 to 17:00
This time-range called “WORK_HOURS” matches on weekdays and between 09:00 to 17:00. Now we can create an access-list: