Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
393
Views
0
Helpful
3
Replies

PIX 515 Blocking non-US IPs

gecko2207
Level 1
Level 1

‎05-14-2008 02:12 PM - edited ‎03-11-2019 05:45 AM

Is there a way to block all IPs from outside the US on a PIX 515e version 7.1(1)?

Labels:
0 Helpful
3 Replies 3

andrew.prince
Level 10
Level 10

‎05-15-2008 01:02 AM

Is this from the inside going outside? or outside coming in?

Either way - it would be an exercise in futility.

You bascially talking about blocking 80% of the routable terresteral internet IP space.

0 Helpful

gecko2207
Level 1
Level 1
In response to andrew.prince

‎05-15-2008 07:16 AM

This would be outside coming in. I know that there is a ton of IP space to block, I could do it with a bunch of access lists using class A or B subnets assigned to RIPE, APNIC,LACNIC, and AfriNIC but I was wondering if there was some easier way?

Thanks,

Brandon

0 Helpful

andrew.prince
Level 10
Level 10
In response to gecko2207

‎05-15-2008 07:21 AM

Of course there is an easier way - just allow the subnets you want to come in, then the default deny all is applied!

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card