Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
330
Views
0
Helpful
1
Replies

ASA5520 dmz webserver access

pvanliere
Level 1
Level 1

‎04-10-2008 09:38 AM - edited ‎03-09-2019 08:29 PM

We have a proxy-server in a DMZ (DMZ-proxy) on an ASA5520.

On another DMZ (DMZ-intranet) we have a number of company web-servers.

The users on the inside are accessing the internet via the Proxy-server.

The Proxy-server has DNS settings from only the ISP (so no internal DNS is available).

When internal users want to go to the company web servers they also need to go via the Proxy-server.

The Proxy-server resolves the DNS names of the WEB-servers as external IP addresses.

question:

How can I make sure that the external IP addresses are "redirected" to another DMZ (dmz-intranet), so that internal users are redirected to the DMZ-intranet?

Can this be done with DNS-doctoring?

Labels:
0 Helpful
1 Reply 1

jbayuka
Level 5
Level 5

‎04-16-2008 09:25 AM

Inside Access to web server on DMZ can be done by many way. This is one way to do....

public ip = X.1.1.1

dmz ip = 192.168.1.1

static (dmz,inside) X.1.1.1 192.168.1.1 netmask 255.255.255.255

0 Helpful
Customers Also Viewed These Support Documents