Limit Outbound Connectivity 1

colinT23 · Jun 17, 2005

Hi Guys,

I need to prevent 1 PC (192.168.1.254) on our network from accessing the internet. Any ideas how I configure the PIX to do this ? Thanks.

Regards Colin.

ChrisAC · Jun 17, 2005

Put an access list on the inside interface denying all traffic from that host and then allow everything else.

access-list outbound deny ip host 192.168.1.254 any log
access-list outbound permit ip any any

access-group outbound in interface inside

Chris.

**********************
Chris A.C, CCNA, CCSA
**********************

colinT23 · Jun 18, 2005

Hi Chris,

Thanks for that. Is the 'log' statement necessary or is this just for information purposes ?

Regards Colin.

ChrisAC · Jun 18, 2005

It's just informational. If I'm blocking a host I like to see what they are attempting to do. You don't have to add 'log'.

Chris.

**********************
Chris A.C, CCNA, CCSA
**********************

colinT23 · Jun 18, 2005

Hi Chris,

Many thanks for your help on this.

Regards Colin.

Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Limit Outbound Connectivity 1

colinT23

Technical User

ChrisAC

ISP

colinT23

Technical User

ChrisAC

ISP

colinT23

Technical User

Similar threads

Part and Inventory Search

Sponsor