[x]
Posted via EE Mobile

Search, ask, and monitor your questions on the go with EE Mobile. Visit Experts Exchange from your mobile device and never be out of touch again.
06/06/2009 at 10:11PM PDT, ID: 24469965 | Points: 500
[x]
Attachment Details

how to block certian IPs from the PAT or NAT list

Asked by yasirirfan in Network Routers, Cisco PIX Firewall, Networking Hardware Firewalls

Tags: PIX 525, access list, firewall, cisco firewall, internet access, pix firewall

Dear All

I have configured PAT as mentioned below, but my problem is I need to block some of the IPs in the range of PAT, for eg from the below PATR list I want to block IP address 10.0.0.4 and 10.0.0.12 from the PAT range, since the configuration is based on subnet mask, I need to create a time basesaccess list to block 10.0.0.4 AND 10.0.0.12 from the PAT list and also I need to block IPs 10.20.0.4 and 10.20.0.6 from 5 PM to 7 AM.

nat (inside) 2 10.0.0.0 255.255.255.240
nat (inside) 2 10.32.0.0 255.255.255.248
nat (inside) 2 10.46.0.0 255.255.255.248
nat (inside) 2 10.18.0.0 255.255.255.240
nat (inside) 2 10.20.0.0 255.255.255.240
nat (inside) 2 10.22.0.0 255.255.255.240
nat (inside) 2 10.28.0.0 255.255.255.240
nat (inside) 2 10.50.0.0 255.255.255.240
nat (inside) 2 10.58.0.0 255.255.255.240

Note I am using PIx 525 with Cisco PIX Security Appliance Software Version 7.0(6)
regards,
[+][-]06/07/09 02:42 AM, ID: 24565847

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 30-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]07/25/09 10:05 PM, ID: 24944244

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
 
Loading Advertisement...
20090824-EE-VQP-74 - Hierarchy / EE_QW_3_20080625