[c-nsp] PIX Question
Paul Stewart
pauls at nexicom.net
Fri Mar 4 11:11:17 EST 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Can a Cisco PIX be used to block application specific traffic such as
MSN Messenger? I am looking for Cisco based options to control which
applications an office can use via a PIX... some applications are easy
as we can just block ports etc. however MSN for example will drop to
80/tcp I believe and we don't want to block http...
Is there a better device than the PIX or something that we can add to
it? We basically want to list specific applications and protocols that
*can* be used and deny everything else...
To make it more complicated, is there a way to allow certain users
specific rights?
Any practical experience in implementing this preferably with Cisco
related software/hardware would be of great assistance.. we have a PIX
in one of our offices that is basically a glorified NAT box at this time..:)
Thanks for your time,
Paul
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (MingW32)
iD8DBQFCKIilqMetgU57IuQRAtGNAJ9+EbJNE8y19weNoVfgOaRO63BpyACgi8+w
2nyq2IPzLN2KP6cQIjlSAXM=
=CwUE
-----END PGP SIGNATURE-----
More information about the cisco-nsp
mailing list