Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
363
Views
0
Helpful
2
Replies

WMZ help

nocret808
Level 1
Level 1

‎07-03-2007 02:10 PM - edited ‎03-11-2019 03:39 AM

Here is what im trying to do. I have a Web server on the DMZ and this is what I?m looking to do.

A. Allow DMZ Web server to communicate with my SQL on the internal network using port 1433

B. Allow my SUS server on the DMZ to have internet access so that it will collect security updates and push this updates out to my Web Server on the DMZ. SUS server will be off most of the time. The only time this server will be turn on is when collecting updates.

Below is the diagram and my configuration. Can you please help me out with the configuration?

Labels:
21879-dmz to sql access - 192.x.x
21878-WMS wDMZ-k.vsd
0 Helpful
2 Replies 2

acomiskey
Level 10
Level 10

‎07-03-2007 02:17 PM

A. This part looks fine. You have allowed the access in the acl and also have defined a static for the communication between the two networks.

B. What is the address of the SUS server? (if it's in the diagram I don't have visio right now). You could just do...

nat (dmz) 1 0 0

0 Helpful

JORGE RODRIGUEZ
Level 10
Level 10

‎07-03-2007 03:09 PM

is this your SQL server 192.168.0.12 inside? if so there is already a rule 172.16.128.5-WebServer DMZ 1433 looks ok.

for SUS server-172.16.128.6 DMZ access to internet syntax as:

nat (DMZ) 1 172.16.128.6 255.255.255.255 0 0

HTH

Jorge

Jorge Rodriguez
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card