?
Solved

How do I block an attacking host/network (or the whole of China?!) using a Cisco 506e

Posted on 2007-10-10
2
Medium Priority
?
258 Views
Last Modified: 2010-10-13
Our dedicated server located at a hosting company in the UK is being probed regularly (automated?) by a few machines located in China. I would like to know how to block them.
The server hosts a https website and MS Sql database.
I have the attackers IP addresses and the computer names they are using.
I have access to the Cisco 506E using PIX.
Can I add a filter to block all their IP addresses? The majority come from 219.153.*.* and 222.73.*.*
Much appreciate any help you can provide.
regards,

Howard
0
Comment
Question by:ogdini
  • 2
2 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 2000 total points
ID: 20048006
Just block those networks:
Add this to the top of the existing inbound acl:

access-list outside_access_in deny ip 219.153.0.0 255.255.0.0 any
access-list outside_access_in deny ip 222.73.0.0 255.255.0.0 any
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 20056475
Here's an alternative.
Create an object-group
 
object-group network BLOCKEDHOSTS
   network-object 219.153.0.0 255.255.0.0
   network-object 222.73.0.0 255.255.0.0

Apply the object group to the acl:
 access-list outside_access_in deny ip object-group BLOCKEDHOSTS any

This way, all you have to do is add/subtract network objects from the group and not mess with the acl. Couple mouse clicks in the PDM, or very simple command line
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
Powerful tools can do wonders, but only in the right hands.  Nowhere is this more obvious than with the cloud.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
Suggested Courses

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question