Announcement

Collapse
No announcement yet.

DENY trafic on pix 501

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • DENY trafic on pix 501

    Hi i have a pix 501 and a dell 8 ports switch

    On the switch i have diffirent pc connected to it. I want that my pc 192.168.1.9 can't access anything in my network (192.168.1.0 / 24)

    Can i do this ?

    access-list inside_access_in deny ip host 192.168.1.9 192.168.1.0 255.255.255.0
    access-list inside_access_in permit tcp any any
    access-list inside_access_in permit udp any any
    access-group inside_access_in in interface inside

    Because it dont work

    Thanks to help !

  • #2
    Re: DENY trafic on pix 501

    Hi,

    I'm confused as to what you are trying to achieve here. If you block the computer from talking to the entire network that would include the default gateway and defeat the point of the machine being on the network in the first place, you wouldn't be able to talk to the local network or the Internet....

    Stuart

    Comment


    • #3
      Re: DENY trafic on pix 501

      Also this host will have to talk through the PIX which would mean

      host
      |
      PIX
      |
      Switch
      |
      other hosts.
      cheers
      Andy

      Please read this before you post:


      Quis custodiet ipsos custodes?

      Comment


      • #4
        Re: DENY trafic on pix 501

        Moved to Cisco Security.
        Marcel
        Technical Consultant
        Netherlands
        http://www.phetios.com
        http://blog.nessus.nl

        MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
        "No matter how secure, there is always the human factor."

        "Enjoy life today, tomorrow may never come."
        "If you're going through hell, keep going. ~Winston Churchill"

        Comment


        • #5
          Re: DENY trafic on pix 501

          THE BEST THING WHICH YOU CAN DO IS GIVE THE pix ip AS GATEWAY ip IN THAT host

          Cheers
          DT

          Comment


          • #6
            Re: DENY trafic on pix 501

            The gateway is irrelevant if they are sitting on the same subnet (in this scenario).
            cheers
            Andy

            Please read this before you post:


            Quis custodiet ipsos custodes?

            Comment

            Working...
            X