List Info

Thread: PIX and Proxy
PIX and Proxy
user name
 2006-05-15 09:26:03 

  


  

    Hi Zia,

 


Access-list are apllied only to that interface from
which the traffic enters PIX (befor version 7.0). If version is before 7.0 
the last command should be


access-group 101 in interface inside.


 


Group: Please correct me if I missed
something.


 










Thanks
& Regards


Jasbir
Saharan


 


 


 


 


 


 


 






From: PIX_Firewall@yahoogroups.com
[mailto:PIX_Firewall@yahoogroups.com] On Behalf Of Thomson
siddhartha
Sent: Sunday, May 14, 2006 4:24 PM
To:
PIX_Firewall@yahoogroups.com
Subject: Re: [PIX_Firewall] PIX and
Proxy





Pix#conf t


Pix#access-list 101 permit tcp host 192.168.101.2 any eq 80


Pix#access-list 101 deny ip any any


Pix#access-group 101 out interface outside


 


All outbound traffic is blocked accept from ISA server.

Zia
Khan <zia_khan2kyahoo.com&gt; wrote:


Hi
  Friends,

I need to allow only one IP address places INSIDE(the
one
  for the proxy server) to browse through the PIX
firewall to the Internet.
  What will be the commands in
the PIX firewall to block traffic to the
  Internet from
all the network 192.168.101.0/24 but only
  allow
192.168.101.2 (MS ISA Proxy/Webcacehe only using
single
  NIC)?

Thanks
Zia

__________________________________________________
Do
  You Yahoo!?
Tired of spam? ; Yahoo! Mail has the best spam protection
  around 
http://mail.yahoo.com
  




  






  

  
  
   
     
    






 [1]











   
 





about | contact  Other archives ( Real Estate discussion Medical topics )