Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

Can I block traffic from nat-gateway on pix ?

The topo just like :

internet---pix---c2621(NAT-gateway)---pc

Now PC can access internet , How can I block it without modify C2621's config ?(Because I have no permission)

Regards

3 REPLIES
Bronze

Re: Can I block traffic from nat-gateway on pix ?

Use an inbound access list on the inside interface of the PIX.

access-list 101 deny ip host (pc address) any

(add some commands that permit some outbound traffic)

!

access-group 101 in interface inside

HTH

Mark

Community Member

Re: Can I block traffic from nat-gateway on pix ?

HI Mark

That PC is behind NAT-Gateway , I can't deny It's IP , cause that IP is translated to NAT-Gateway's .

Community Member

Re: Can I block traffic from nat-gateway on pix ?

I do not think this is possible unless the pc has static NAT.

regds

102
Views
0
Helpful
3
Replies
CreatePlease to create content