01-20-2009 06:34 AM - edited 03-11-2019 07:39 AM
Was wondering what the best practice is for this type of setup ??
Do I add a deny all on the OUTSIDE interface, or is best to add it to the INSIDE interface ???
Any suggestions appreciated.
Thanks
01-20-2009 06:43 AM
Depends. Do you have DMZ devices that should be restricted from your inside users? I would say keep it consistent; don't apply them outbound on some and inbound on others. Make troubleshooting easier, not harder.
Hope that helps.
01-20-2009 07:17 AM
No ... in the DMZ I only have a reverse proxy.
Thats what I was expecting to hear ..
Thanks for your help.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide