Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
283
Views
0
Helpful
2
Replies

Deny all outbound traffic except 80, 443 from a seperate proxy server ??

tanania2005
Level 1
Level 1

‎01-20-2009 06:34 AM - edited ‎03-11-2019 07:39 AM

Was wondering what the best practice is for this type of setup ??

Do I add a deny all on the OUTSIDE interface, or is best to add it to the INSIDE interface ???

Any suggestions appreciated.

Thanks

Labels:
0 Helpful
2 Replies 2

Collin Clark
VIP Alumni
VIP Alumni

‎01-20-2009 06:43 AM

Depends. Do you have DMZ devices that should be restricted from your inside users? I would say keep it consistent; don't apply them outbound on some and inbound on others. Make troubleshooting easier, not harder.

Hope that helps.

0 Helpful

tanania2005
Level 1
Level 1
In response to Collin Clark

‎01-20-2009 07:17 AM

No ... in the DMZ I only have a reverse proxy.

Thats what I was expecting to hear ..

Thanks for your help.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card