Question : Firewall configuration for CISCO PIX 515E

I want to put an exclusion in the firewall so people cannot access sites like weatherbug or webshots, how do I do that, the Cisco software of the firewall shows ASDM 5.0. Thanks!

Answer : Firewall configuration for CISCO PIX 515E

Hey again

Logon to the pix and enter the commands below where x.x.x.x and y.y.y.y are the ip addresses of the websites you wish to block. Add more of these Access-lists as necessary. The explanations of these commands is to the right of them.

#configure terminal
PIX(config)#access-list inside-acl deny tcp any host x.x.x.x eq 80 >>blocks the web traffic to the offending sample ips
PIX(config)#access-list inside-acl deny tcp any host y.y.y.y eq 80 >>blocks the web traffic to the offending sample ips
PIX(config)#access-list inside-acl permit ip any any >>allows all other traffic out
PIX(config)#access-group inside-acl in interface inside >>apply to inside interface
PIX(config)#no static (inside,dmz) 206.173.193.17 206.173.193.17 netmask 255.255.255.255 >>removes the 3 statics
PIX(config)#no static (inside,dmz) 209.249.20.135 209.249
PIX(config)#no static (inside,dmz) 206.204.187.12 206.204.187.12 netmask 255.255.255.255
PIX(config)#exit
#write mem >>saves changes

hth

Random Solutions

Dialing number on gsm phone programmatically

Configuring a 2811 router to acts as Call Manager for VoIP with 7940

Internet slows Down

Hostname in Message-ID does not match FQDN for SMTP server. Does this matter?

unable to connect via scp and sftp

How to access the Internet over a LAN

CISCO Password Recovery - %AAAA-3-INVSTATE:unknown

WPA Security option not present on Win XP Tablet PC Edition PC

Access my home network from my work laptop when I am at home and logged into my work's VPN