[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Pix 501 block all outbound ports

Posted on 2009-02-23
4
Medium Priority
?
1,352 Views
Last Modified: 2015-01-05
I want to block all outbound ports, then open only ports I need like 80, 8080, 5001, 443 and so on.
0
Comment
Question by:hpmservices
4 Comments
 
LVL 32

Accepted Solution

by:
Kamran Arshad earned 500 total points
ID: 23719191
0
 
LVL 57

Expert Comment

by:Pete Long
ID: 23720000
Well, you dont need to deny anything as soon as you allow things then everythign else is blocked so
access-list outbound permit tcp any any eq http
access-list outbound permit tcp any any eq https
access-list outbound permit tcp any any eq 8080
access-list outbound permit tcp any any eq 5001
access-group outbound in interface inside
 Will only let Ports 80, 8080, 5001 and 443 out and block everything else
0
 
LVL 5

Expert Comment

by:devangshroff
ID: 23720615
peteLong  has provided correct ans for this
0
 
LVL 12

Expert Comment

by:Donnie4572
ID: 23723561
The Pix assumes that all traffic originating from the inside is safe and therefore allows all outbound connections on any port, by default.
I think this is a huge security hole and poor design for Cisco or any firewall!

So, if you define an access-list on the inside interface, as described above, you will effectively limit outbound traffic to only traffic defined in the access-list.


Donnie
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When speed and performance are vital to revenue, companies must have complete confidence in their cloud environment.
Powerful tools can do wonders, but only in the right hands.  Nowhere is this more obvious than with the cloud.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question