Every once in a while we get issues with users on the inside trying to run Apps that are not allowed and cause a flood of Packets back into the network. All of which are blocked, but still clog's up the line.
I was thinking of Assigning users IP addresses reservations via DHCP on the inside and then mapping the inside to outside addresses in the PIX so I have a 1 to 1 relation to the inside and outside addresses. That way I can quickly figure out who's doing what?
Are there any issues with having lots of "static (inside,outside)" commands in the config? I might want to add 40?
Comments & Suggestions welcome.
Thanks, Scott