Solved

Blocking hosts using a PIX501

Posted on 2006-11-01
1
229 Views
Last Modified: 2010-04-09
what command (if any) could I use to block ad hosts such as doubleclick.net and atdmt.com in my PIX 501. I have a whole list of hosts to block already.. I just wanted to get the correct command to do so.
0
Comment
Question by:Bill Warren
1 Comment
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 17854532
You cannot block hosts by dns domain name, only by IP address. you would have to use nslookup to resolve doubleclick.net and atdmt.com to IP addresses, then create a blocking acl in the pix:

Name:    doubleclick.net
Address:  216.73.92.112

Name:    www.atdmt.com
Address:  12.130.62.126

access-list deny_outbound deny ip any host 216.73.92.112
access-list deny_outbound deny ip any host 12.130.62.126
access-list deny_outbound permit ip any any
access-group deny_outbound in interface inside
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question