I would like to block nachi worm on a Cisco
Pix firewall running version 7.2(2) code.
On Cisco IOS, I do this:
access-list 199 permit icmp any any echo
access-list 199 permit icmp any any echo-reply
route-map nachi-worm permit 10
match ip address 199
match length 92 92
set interface Null0
no ip unreachables
ip route-cache policy
ip policy route-map nachi-worm
This can be very easily with Checkpoint
firewalls 'cause I've done it many times.
I would like to accomplish this Cisco Pix
7.x code. Is it possible? Thanks.