05-14-2008 02:12 PM - edited 03-11-2019 05:45 AM
Is there a way to block all IPs from outside the US on a PIX 515e version 7.1(1)?
05-15-2008 01:02 AM
Is this from the inside going outside? or outside coming in?
Either way - it would be an exercise in futility.
You bascially talking about blocking 80% of the routable terresteral internet IP space.
05-15-2008 07:16 AM
This would be outside coming in. I know that there is a ton of IP space to block, I could do it with a bunch of access lists using class A or B subnets assigned to RIPE, APNIC,LACNIC, and AfriNIC but I was wondering if there was some easier way?
Thanks,
Brandon
05-15-2008 07:21 AM
Of course there is an easier way - just allow the subnets you want to come in, then the default deny all is applied!
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: