PIX 515E: blocks access to external sites
We recently had an internal problem with the staff to access some Web sites of 'social' in the office. My supervisor asked me if we can easily block access to these types of sites using our current hardware. Is it possible or will we need to acquire another device?
Thank you.
I agree with the previous poster. But if you have only a few of these 'social' sites, you could do with your current PIX w/o too much administrative burden.
Use DNS (nslookup) to find the IP address of the sites you want blocked and create an ACL and apply to the inside interface. You'll be in charge yourself to ensure that you keep the ACL is updated.
or...............
If you have a router Cisco IOS whereby all related Internet traffic transits, you can create a political and/or the route map map using nbar to match with a URL and everything just black hole / deny traffic.
Here is a sample of 'code red' block by using these methods:
http://www.Cisco.com/warp/public/63/nbar_acl_codered.shtml#MethodB
Tags: Cisco Security
Similar Questions
-
PIX 515e - can't view the site from the inside
Hi people
I have a PIX 515E with a Web server in the DMZ. Using a static control that is on the web with an internet address and can be viewed from anywhere outside of the firewall. But users inside can't display it, by ip address or domain name. Would be grateful for any help on the access for this list
Thank you
Oops...
I did not understand how you want this configuration...
It should work...
http://www.Cisco.com/en/us/products/HW/vpndevc/ps2030/products_tech_note09186a0080094aee.shtml#DMZ
-
Re: computer secuity - blocked access to the sites/w Norton accidentally
Can't get connected to comcast email using the Netscape Navigator browser.
I used my laptop to the airport recently and I mgiht have cleared of some web sites of security/w Norton.
Can enter comcast site OK/w IE. But does not load Netscape's my rock.
Help!
You need to contact Norton technical support for problems with the settings in their product. Try:http://www.symantec.com/norton/support/dtree.jsp orhttp://www.symantec.com/norton/support/contact/contact.jsp?pvid=cs.
I hope they can help you.
Good luck!
Lorien - MCSA/MCSE/network + / has + - if this post solves your problem, please click the 'Mark as answer' or 'Useful' button at the top of this message. Marking a post as answer, or relatively useful, you help others find the answer more quickly.
-
A web site that I regularly access using Firefox has been updated in the last 24 hours. I make Firefox to access the external site updates rather than site updates apparently stored on my memory cache?
You can reload webpages and ignore the cache to refresh potentially stale or corrupt.
- Hold down the SHIFT key and click the Reload button
- Press 'Ctrl + F5' or 'Ctrl + Shift + R' (Windows, Linux)
- Press 'Command + shift + R' (Mac)
-
When I access the net with firefox, a new tab opens on a specific page. How can I block access to this site or stop firefox from loading? Here is the site in question:
http://AdultFriendFinder.com/go/g1110961-PMO
not once have I ever accessed this site and it doesn't show up in the browser historyThis has happened
A few times a week
is since I started using firefox
Make a check of malware with a few programs to scan for malware.
You must use all of the programs, because each detect different malware.
Make sure that you update each program to get the latest version of the database.http://www.malwarebytes.org/mbam.php - Malwarebytes' Anti-Malware
http://www.superantispyware.com/ - SuperAntispyware
http://www.safer-networking.org/en/index.html - Spybot Search & Destroy
http://www.lavasoft.com/products/ad_aware_free.php - Ad-Aware Free
http://www.microsoft.com/windows/products/winfamily/defender/default.mspx - Windows Defender: Home Page
..........
See also 'Spyware on Windows': http://kb.mozillazine.org/Popups_not_blocked -
my windows Live ID has been blocked access to the vlsc site. What can I do?
I tried to access the vlsc site, and I got a page saying that my account was blocked access to the site.
WHA t I can do
Your login status is invited or blocked because you are currently signed in with a Windows Live ID that is not associated with the Microsoft Partner Network.While you are connected as a guest, you will be able to access content available for public view. Links that display locked icons are contained premium for members of partner network, and you will not be able to view that content until you either you sign in with a Windows Live ID associated with the network of partners or register in the network of partners and then sign in with your newly associated Windows Live ID.You will need to check with the Volume Licensing Service Center:
https://partner.Microsoft.com/us/40046574
For more information about how to contact the VLSC, click below:Sincerely,Marilyn
-
Verizon blocks access to sites
I don't know what to do. I tried to get on one of the sites that I have used, and the screen becomes reddish and I get a message that Verizon has blocked access to the site and told me to contact my administrator. I thought I was the administrator. I have something in outlook blocked mail when I got it? Or maybe in my mailbox from live.com? I'm just throwing ideas here, people, because I have no idea what to do. I go to tools and options internet and typed in a secure site, but nothing happened. Any ideas? Thanks to all who responded! Annacolleen
Hello
1. what web browser do you use?
I suggest that you contact Verizon support for better help on the issue.
-
Malware bytes blocks access to the 78.41.203.120
a program on my computer tries to access the IP 78.41.203.120
Malware bytes blocks access to the site saying it's dangerous.
I can't find information on the web.
Any help?
Hello
78.41.203.120
http://dawhois.com/IP/78.41.203.120.htmlYou should check with the support of Malwarebytes and their forums.
Malwarebytes - Support
http://www.Malwarebytes.org/support/Malwarebytes - Forums
http://forums.Malwarebytes.org/I hope this helps.
Rob Brown - Microsoft MVP<- profile="" -="" windows="" expert="" -="" consumer="" :="" bicycle="">-><- mark="" twain="" said="" it="">->
-
4240 IPS blocking queries with Pix 515E
I have activated the lock on the 4240 and put locking as our Pix 515E. When I look at the Configurations of Signature quite a few Signature Actions are set to alert only produce. If blocking is enabled you also go and the Actions of signing the Deny value or TCP Reset? So far my attackers show dosen't IPS refused and he detected the high level of traffic which I assume must now be blocked. Thanks John
Yes, go under the signatures that you want and enable blocking for them as an action. Globally blocking configuration (setting the blocking device, the interface, the connection of the device information, etc.), does not actually blocked on the sensor itself, we must still go and activate the blocking of this particular signature. When this particular GIS fires in the future, the sensor it will block on the device that you configured.
Be very careful with blocking, the reason that we're not blocking simply all the signatures, it is that it would be very dangerous to blindly add access lists to a device that will stop traffic. You must first make sure that you don't get any number of false positives on the signatures and end up blocking valid traffic. In addition, on a busy sensor you could easily overrun detector and locking to writing and deleting 1000's of top access lists. And finally, although probably not, blocking can even be used as an attack denial of service, where an attacker, if they know what signatures you block, can usurp packages past your sensor so that it denies traffic to our legitimate guests.
You have to look at what signatures you really want to block, and then enable blocking on them individually.
-
I want to block access to some Web sites when using firefox, how do I do this?
I would like to be able to block access to specific Web sites when using Firefox as my browser. How can I do this? Thank you.
-
kb956196
Access Manager will not see this site, supervisor password needs. This page has been blocked by your approved sites list
We have forgotten the password. is there a way to reset the password or to disable it without the password?
Hello
Download and run the http://www.nirsoft.net/utils/conadvpass.html program (if you are able to access the site)
If not, perform this task:
"If you have forgotten the password of Access Manager, you can remove it by accessing this folder in Regedit (don't forget to back up your registry first):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\
CurrentVersion\Policies\Ratings
Select the key called icon in the right pane and press on delete. Close Regedit.
Now, you can start Internet Explorer and goto tools, Internet Options... Select the content tab and click on disable. When asked a password, do not write, just click OK. This will disable access Manager, since nothing is more a password. You can enable it again as soon as invent you a more memorable password"
-
Hello
7.0 (1) version pix
ASDM version 5.0 (1)
I have a situation where you go paas-thanks to the VPN feature goes on our PIX 515E. I tried to put this on the pix using a VPN Wizard Site to site
who is enabled. I was unable to connect to the pix from the remote site. Witch's journal replied negotiate the pix is OK and the success
The problem is when I try to set up the tunnel to the top of the remote site. I fall without failure.
where can I see the vpn pix for error log?
is there a manual for the solution of site to site VPN using the wizard
Help, please.
Thanks in advance
the section 'use adsm' (step 14) gives an example on how to set up vpn lan - lan via adsm
Newspaper to go to the section "check".
-
Malwarebytes 'has managed to block access to potentially malicious Web site.
Hello
Did someone have the problem I, m very experience regularly I run win 7 Home Edition and constantly I, m getting this message.
I use utorrent to my D/L without any problem at all, but this message on my T/Bar. I regularly run the Malwarebytes Anti Malware to make sure that my pc is not infected message is... Malwarebytes 'has managed to block access to potentially malicious Web site... " Type the incoming port is and treat: utorrent. can exe I ask for your help to remove this annoying message.
Thank you
DennisHi Dennis!
I suggest that check you the answers here: http://www.malwarebytes.org/support/consumer/
See you soon
Julia -
PIX 515E and remote access VPN
I use a PIX 515E with: ASDM Version: 5,0000 51 PIX Version: 8.0 (4) and configure it with remote access VPN.
I would like to get an email every time that a user login (and or disconnection) to the VPN. Remote clients use the Cisco VPN Client.
Any help is appreciated,
Hello
Here is a link to the email configuration when you log in to the ASA/PIX: http://www.cisco.com/c/en/us/support/docs/security/pix-500-series-security-appliances/63884-config-asa-00.html#anc7
Then you can create a list of message to send the logs only for the connection/disconnection of the VPN user: http://www.cisco.com/c/en/us/support/docs/security/pix-500-series-security-appliances/63884-config-asa-00.html#anc18
There is a wire that is linked here: https://supportforums.cisco.com/discussion/10798976/asa-email-logging-issue
-
Adobe flash player 11.0 blocks access to the Web site home pages
Why is Adobe flash player 11.0, allowed to block access to the Web site home pages, until their trash is installed? They should be prosecuted for punishment of the loss of time by Internet users, who spend countless hours trying to fix their garbage, which takes control of the web and blocks PCs access to their program settings, unless it is done according to their specific updates. N ' ILS OWN INTERNET and everything on it, or what?
Are you sure he blocked it, or the web page requires Flash Player to see this?
Most web pages require an element of Adobe Flash Player.
First of all, try to enable Active Scripting in the areas of Sites Internet Options, security settings, trust.
You should also add a corrupted on.
Click Start, type: Internet Options
Press enter
Select the "Advanced" tab
Under reset Internet Explorer settings, click "reset".
This should restore the Internet Explorer default settings.
Then reinstall Flash Player
http://get.Adobe.com/flashplayer/
----------
Flash Player
Troubleshoot installation of Flash Player for Windows
http://kb2.Adobe.com/CPS/191/tn_19166.html
Troubleshooting player stability and performance
http://blogs.Adobe.com/JD/2010/02/troubleshooting_player_stabili.html
Uninstaller
http://kb2.Adobe.com/CPS/141/tn_14157.html
Flash Player Support Forum
Maybe you are looking for
-
Satellite R630 - 11L - HARD drive failure
I bought Satellite R630 - 11L months back in Dubai and brought to the India. When i run diagnostic tool results PC say hard disk do not.When I esquired in the service center hear they told me he has guaranteed EMEA so it is not repairable hear. I don
-
Satellite A100 - 01 Q does not start
Hello together, I have a strange problem with my Toshiba Satellite A100 laptop startup - 01 Q. It starts to boot, the line (on the Toshiba slashscreen) moves along so far, but not in the end - and that's all. It stucks about 75% of startup (mouse ini
-
failure of HD 6710 b need advice to fix
Last week, the system stops. At startup, the screen went "HP" to buy "Windows" then stalled and instead to START, the system went into F8 screen. (modified with fewer options) I can't return to boot in any mode offered. System Bios check ran (version
-
I bought a laptop with Windows 7 in November already on this subject. I did updates since then without any problems until a few months ago, I tried to download the update of security for Microsoft Office System 2007 (KB972581). I get the error mess
-
The Terminal services Server popup closed at startup
After booting to the desktop, I get a popup saying services Terminal Server is not running. He reads an APPCRASH. I went to the services.msc and top one was auto and ongoing enforcement, the other 2 are manual and off... Always at every startup I get