Re: Blocking access to a Outside IP from Internal Interface
the posted acl will definitely achieve what your objective is, however, it also means that the only allowed outbound traffic is "10.1.1.225 255.255.255.255 192.168.1.10 eq www".
i.e. inside host can't broswing any other website, nor can they send an email over the internet. in fact, the host 10.1.1.225 may not be able to broswe 192.168.1.10 since the dns has also been blocked.
assuming you would like to allow all outbound traffic, but not 192.168.1.10.
access-list outbound permit ip host 10.1.1.225 255.255.255.255 192.168.1.10 eq www
access-list outbound deny tcp any host 192.168.1.10 eq www
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...