I just have some few questions regarding securing the pix1. it was a default of pix that the inbound on the outside interface is totally block. Say there is no access-list at all on this interface, do i need to do the deny statement for the rfc 1918 ...