Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
446
Views
0
Helpful
1
Replies

Enable/Disable remote access to inside of PIX

otnj2ee
Level 1
Level 1

‎11-03-2005 03:22 PM - edited ‎02-21-2020 12:30 AM

For a remote PC (VPN Client) to access to the inside of the Pix firewall, I'll issue a CML:

http 10.10.10.0 255.255.255.0 inside

Now, I want to reverse the above command, i.e. to disable the Remote access to the inside of the Pix. What is the command to do so? And where can I find the online reference (doc) for it?

Thanks to help

0 Helpful
1 Reply 1

Patrick Iseli
Level 7
Level 7

‎11-03-2005 04:20 PM

To diasable any command on the PIX use the < no > staement before any config line.

Example: [no] http ip_address [netmask] [if_name]

Command reference can be found on:

http://www.cisco.com/en/US/products/sw/secursw/ps2120/prod_command_reference_list.html

http command =

--------------

Enables the PIX Firewall HTTP server and specifies the clients that are permitted to access it. Additionally, for access, the Cisco PIX Device Manager (PDM) requires that the PIX Firewall have an enabled HTTP server.

[no] http ip_address [netmask] [if_name]

[no] http server enable

clear http

show http

Syntax Description

clear http

Removes all HTTP hosts and disables the server.

http

Relating to the Hypertext Transfer Protocol.

http server enable

Enables the HTTP server required to run PDM.

if_name

PIX Firewall interface name on which the host or network initiating the HTTP connection resides.

ip_address

Specifies the host or network authorized to initiate an HTTP connection to the PIX Firewall.

netmask

Specifies the network mask for the http ip_address.

Defaults

If you do not specify a netmask, the default is 255.255.255.255 regardless of the class of IP address. The default if_name is inside.

Command Modes

Configuration mode.

Usage Guidelines

Access from any host will be allowed if 0.0.0.0 0.0.0.0 (or 0 0) is specified for ip_address and netmask.

The show http command displays the allowed hosts and whether or not the HTTP server is enabled.

Examples

The following http command example is used for one host:

http 16.152.1.11 255.255.255.255 outside

The following http command example is used for any host:

http 0.0.0.0 0.0.0.0 inside

sincerely

Patrick

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card