The PIX has some limited ability to look at the application layer traffic, but not much. By default it will only allow certain SMTP commands, for example, but you cannot select which commands, the feature is either on or off. You cannot block certain FTP or HTTP commands. There are 3rd party integration products for blocking certain HTTP urls, but none that I know of for FTP. HTH, Kent -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ali J Khan Sent: Saturday, August 04, 2001 10:17 PM To: [EMAIL PROTECTED] Subject: Restrictions on Protocol level in Cisco Pix Firewall [7:14930] Hi All I have a scenario where I need to limit the commands of a particular protocol through the Pix. Consider, for example, putting restriction on ftp or smtp so that only specific commands for these protocols such as only the GET command working for ftp. Is this possible in the Pix. If yes, How? alijkhan, ccnp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15039&t=15039 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]