Solved

Blocking hosts using a PIX501

Posted on 2006-11-01
1
227 Views
Last Modified: 2010-04-09
what command (if any) could I use to block ad hosts such as doubleclick.net and atdmt.com in my PIX 501. I have a whole list of hosts to block already.. I just wanted to get the correct command to do so.
0
Comment
Question by:afsfire
1 Comment
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 17854532
You cannot block hosts by dns domain name, only by IP address. you would have to use nslookup to resolve doubleclick.net and atdmt.com to IP addresses, then create a blocking acl in the pix:

Name:    doubleclick.net
Address:  216.73.92.112

Name:    www.atdmt.com
Address:  12.130.62.126

access-list deny_outbound deny ip any host 216.73.92.112
access-list deny_outbound deny ip any host 12.130.62.126
access-list deny_outbound permit ip any any
access-group deny_outbound in interface inside
0

Featured Post

Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

Join & Write a Comment

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
Illustrator's Shape Builder tool will let you combine shapes visually and interactively. This video shows the Mac version, but the tool works the same way in Windows. To follow along with this video, you can draw your own shapes or download the file…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now