08-07-2001 01:08 PM - edited 02-20-2020 09:49 PM
How do you deny everything on the inside interface on a PIX 525? I want to open only a few "doors".
Any help greatly appreciated.
Thanks,
Matt
08-10-2001 01:36 PM
Use and access control list and apply this list to the internal interface. The access list should state the traffic you do allow first. An implicit deny any statement is already in place
08-13-2001 07:24 AM
I usually just setup my NAT to allow only the hosts I want to go out in a very controlled environment. For instance, if I only want to allow say 10 users out at all, I wont use a nat or global statement at all. Just statics for those machines. IfI need to be further restrictive, I use access-lists from there.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide