Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
282
Views
0
Helpful
1
Replies

ASA 5520 - secure vlans behind firewall

tsrader
Level 1
Level 1

‎05-21-2008 05:30 PM - edited ‎03-11-2019 05:48 AM

Devices behind firewall all on one network but dept stated they want their server to be "isolated" while still on same network.

Is my only option to create another context and place server in it? For just a single server this seems like overkill, not to mention wasting a context for just one server (no other servers will be behind firewall).

Can i create a separate vlan (behind firewall) and secure it that way or maybe create DMZ for just this server.....server is accessed by devices on both inside AND outside network.

Thanks for info.

Labels:
0 Helpful
1 Reply 1

JORGE RODRIGUEZ
Level 10
Level 10

‎05-21-2008 07:05 PM

Can i create a separate vlan (behind firewall) and secure it that way or maybe create DMZ for just this server.....server is accessed by devices on both inside AND outside network.

I would go your second solution in your post, create subinterface in ASA maybe with a /30 or /29 and Isolate the server , you can then provide block access or allow through acls form inside to it as well as provide access to it from the outside.

Rgds

-Jorge

Jorge Rodriguez
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card