I'm working on a quick quote for a partner of ours. I'm wondering if the Cisco ASA 5510 Security Plus Firewall Edition, is capable of doing a DMZ type configuration with just a single device, rather than an old school Internet -> Physical Firewall -> DMZ -> Physical Firewall -> Intranet.
My guess is it would be something simlar to VLAN 1 (DMZ) and VLAN 2 (Intranet). With a NAT to VLAN1, but all traffic from outside must pass through the device, and any traffic passing from VLAN 1 to VLAN 1 must have Access Control rules.
Sorry if the question is routine, I just want to be 100% before I tell them to buy. Here is a link to the product https://www.insight.com/search/ppp.web?fromSearch=true&materialId=ASA5510-SEC-BUN-K9