I have 831 router with all 4 LAN interfaces visible as virtual VLAN interface. I have some public IPs (for WWW, FTP etc.) which are "defined" on VLAN interface.
All routing configuration as well as NAT are done and working OK. Now I wanted to configure a firewall (using Basic Firewall option from SDM) but unfortunately it blocked all traffic to public IPs.
My question for the moment is if it's possible to create "running" firewall this way or maybe I should remove one (or two) LAN int from VLAN and use as DMZ.
I'm new to CISCO routers (frankly I'm new to routers in general ;)) so I'll be gratefull for any assistance.
Greetings from Poland,