What is Required

Unanswered Question
Jun 28th, 2008
User Badges:

How can i allow all outbound traffice for my DMZ users through the outside interface of pix?


My DMZ users have a private IP Range 192.168.2.0 and a security level of 50. The Outside interface sec is 0.


Thanks!

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
dhananjoy chowdhury Sat, 06/28/2008 - 06:29
User Badges:
  • Silver, 250 points or more

Two things are required NAT and Access-list -

- NAT commands (for all users in DMZ):

global(outside) 1 interface

nat(dmz) 1 0.0.0.0 0.0.0.0


- Access-lists (for allowing HTTP):

access-list dmz-out extended permit tcp any eq www any

Actions

This Discussion