https://community.cisco.com/t5/network-security/pix-operation/m-p/70803#M687141 <HTML><HEAD></HEAD><BODY><P>With a base configuration, the base security policy is all TCP and UDP is allowed out and only return (established) connections are allowed back in. Then you can start opening holes for mail servers, web servers, etc. You can set access lists to block outbound traffic to certain IP addresses/subnets or major nets. If you are looking to perform content filtering, the PIX works seamlessly with WebSense from <A class="jive-link-custom" href="http://www.websense.com" target="_blank">www.websense.com</A> </P></BODY></HTML> Thu, 29 Nov 2001 21:58:25 GMT lisa.hall 2001-11-29T21:58:25Z https://community.cisco.com/t5/network-security/pix-operation/m-p/70802#M687094 <P>Does PIX firewall run tranperant mode with user by default. I mean that does PIX firewall open all the Internet port ? and can we deny by the domain name? </P> Fri, 21 Feb 2020 05:54:55 GMT https://community.cisco.com/t5/network-security/pix-operation/m-p/70802#M687094 kvbien 2020-02-21T05:54:55Z https://community.cisco.com/t5/network-security/pix-operation/m-p/70803#M687141 <HTML><HEAD></HEAD><BODY><P>With a base configuration, the base security policy is all TCP and UDP is allowed out and only return (established) connections are allowed back in. Then you can start opening holes for mail servers, web servers, etc. You can set access lists to block outbound traffic to certain IP addresses/subnets or major nets. If you are looking to perform content filtering, the PIX works seamlessly with WebSense from <A class="jive-link-custom" href="http://www.websense.com" target="_blank">www.websense.com</A> </P></BODY></HTML> Thu, 29 Nov 2001 21:58:25 GMT https://community.cisco.com/t5/network-security/pix-operation/m-p/70803#M687141 lisa.hall 2001-11-29T21:58:25Z