PIX 501 Server Publishing

I am publishing smtp server on internet ... "access-list inbound permit tcp any interface outside eq smtp". I have a group of ip ranges that I would like to deny access to port 25. How would I do that?

Thanks in advance

Reply to
RG
Loading thread data ...

Before that line, do (e.g.)

access-list inbound deny tcp 61.0.0.0 255.0.0.0 interface outside eq smtp

to block all of 61.*.*.*

Chances are, though, that you have no resources that those hosts

-should- be allowed to access, in which case you could simplify to

access-list inbound deny ip 61.0.0.0 255.0.0.0 any

Reply to
Walter Roberson

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.