05-14-2008 02:12 PM - edited 03-11-2019 05:45 AM
Is there a way to block all IPs from outside the US on a PIX 515e version 7.1(1)?
05-15-2008 01:02 AM
Is this from the inside going outside? or outside coming in?
Either way - it would be an exercise in futility.
You bascially talking about blocking 80% of the routable terresteral internet IP space.
05-15-2008 07:16 AM
This would be outside coming in. I know that there is a ton of IP space to block, I could do it with a bunch of access lists using class A or B subnets assigned to RIPE, APNIC,LACNIC, and AfriNIC but I was wondering if there was some easier way?
Thanks,
Brandon
05-15-2008 07:21 AM
Of course there is an easier way - just allow the subnets you want to come in, then the default deny all is applied!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide