Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1572
  • Last Modified:

How to block traffic from an ip on a Cisco ASA 5520

I want to block traffic from rzmr1.init.DE (195.43.53.25) and ns1.vpsville.ca (76.74.137.6) on my ASA5520. I keep getting event id 5504 onmy  DNS servers from these IPs. I know this is informational as a result of "Secure cache against pollution" but they are filling up my event viewer. Can these be blocked?
0
InSearchOf
Asked:
InSearchOf
1 Solution
 
Andre ThibodeauITCommented:
try...

Assuming that the acl_outside is on your outside interface (default).  Insert as the first two lines.

access-list acl_outside line 1 deny ip host 195.43.53.25 any
access-list acl_outside line 2 deny ip host 76.74.137.6 any

Andre
0
 
InSearchOfAuthor Commented:
Thanks athibodeau. I appreciate it.
0

Featured Post

Get Certified for a Job in Cybersecurity

Want an exciting career in an emerging field? Earn your MS in Cybersecurity and get certified in ethical hacking or computer forensic investigation. WGU’s MSCSIA degree program was designed to meet the most recent U.S. Department of Homeland Security (DHS) and NSA guidelines.  

Tackle projects and never again get stuck behind a technical roadblock.
Join Now