Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
431
Views
0
Helpful
2
Replies

Allowing specific subnet out

wgranada1
Level 1
Level 1

‎02-12-2009 06:36 AM - edited ‎03-11-2019 07:49 AM

I have a question I have a pix 515E and what I would like to do is allow a certain subnet out to only talk to a specific subnet out on the internet how would I do that? So for example I have a user subnet on the 10.255.186.0/24 subnet and would like that subnet to only talk to 216.230.140.0/24 subnet. I want to block everything else internally to talk to that subnet. How can I do that?

Labels:
0 Helpful
2 Replies 2

Jon Marshall
Hall of Fame
Hall of Fame

‎02-12-2009 06:42 AM

Warren

Assuming you don't want to stop other traffic to other subnets -

access-list inside_out permit ip 10.255.186.0 255.255.255.0 216.230.140.0 255.255.255.0

access-list inside_out deny ip any 216.230.140.0 255.255.255.0

access-list inside_out permit ip any any

access-group inside_out in interface inside

Jon

0 Helpful

wgranada1
Level 1
Level 1
In response to Jon Marshall

‎02-12-2009 06:48 AM

Well the way things are set up is that everything goes through a proxy server I would like subnet 10.255.186.0/24 to by pass the proxy server and be the only subnet that can talk to the 216.230.140.0/24 everthing else would be blocked. Also I want the 10.255 subnet to only to talk to that subnet any other attempt to go out the internet would be routed through the proxy server, what you posted that will accomplish this?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card