Block range of ports cisco pix 515e

Posted on 2006-11-20
Last Modified: 2013-11-16
I need to block a range of ports, for all inside ip addresses. the port range is 6881-6999, I tried the lines below, but it cut off all traffic to the internet. The hardware is a cisco pix 515e 6.3(4). All of the traffic will be coming from the inside interface, destined for the internet. Can anyone tell the CLI syntax to do this?

access-list acl_inside deny tcp any any range 6881 6999
access-group acl_inside in interface inside
Question by:ptuttle1319
LVL 20

Accepted Solution

RPPreacher earned 500 total points
ID: 17981641

access-list acl_inside deny tcp any any range 6881 6999
access-list acl_inside permit ip any any eq http
access-list acl_inside permit ip any any eq https

access-group acl_inside in interface inside

Access-lists end with an implied deny all

Author Comment

ID: 17981725
I had to change it to the syntax below to get it to work, seems to be good to go now.

access-list acl_inside permit tcp any any eq http
access-list acl_inside permit tcp any any eq https

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
clear arp 1 30
How to setup 3 isps on a redundant mode? 3 30
Cisco ASA 3 28
VPN between Juniper ssg140 (Static IP) to ASA 5500 (Dynamic IP) 23 21
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
Concerto Cloud Services, a provider of fully managed private, public and hybrid cloud solutions, announced today it was named to the 20 Coolest Cloud Infrastructure Vendors Of The 2017 Cloud  (…
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question