Please guide me how to configure DMZ on ASA

Unanswered Question
Jan 16th, 2008
User Badges:

Hi,


This is sivaji and it will be gratefull if you give the support on this.


We have datacenter and all the servers located in datacenter. From dataceter to our office we have point to point line conneted to Cisco routers. We have ASA in datacenter and DMZ port connected to router which going to our office.


I need the example configuration for this setup.Please help me on this.


regards

Sivaji.P



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
aghaznavi Tue, 01/22/2008 - 11:48
User Badges:
  • Silver, 250 points or more

The configuration of the DMZ in the device can be broadly divided into these three parts:

Interface Security Level -- Traffic is allowed from a higher security interface to a lower security interface by default. But, the reverse case is blocked

Translation Rules -- Translation rules can be dynamic nat, global, or static.

Traffic Permission Rules -- Traffic Permission rules are access-list and access-group rules applied in the configuration of the firewall to permit the traffic to go through the interface.

For DMZ configuration use this document it contains examples.

http://www.cisco.com/en/US/docs/security/asa/asa72/getting_started/asa5550/quick/guide/dmz_n.html

Actions

This Discussion