Standard template for a ASA Firewall 5520 & Router which is Connected to Internet

Unanswered Question

Hello Guys,

I am looking for a Standard template for a ASA Firewall 5520 & Router which is Connected to Internet Link.

Connectivity:-

Coreswitch ----->  ASA Firewall 5520 ---------------->  Cisco Router -----10MB Leases line link------------- ISP Cloud.

     |                     |

     |mgmt port      |

     |                     |

     |                     | Outsdie Int

     Blue Coat 3500

          |

          |

          |

          | Inside Interface

          DMZ Switch.

I wanted to know what all security standards i need to follow on Cisco Router & ASA  like blocking ports and applying ACLs and etc.

It would be great if any also helps me on bluecoat 3500 to set a good config to monitor the most used bandwidth.

Appreciate all your help.

Regards,

KA.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Federico Coto F... Tue, 03/09/2010 - 12:13

Hi,

By default the ASA allows all outgoing traffic and blocks all incoming traffic. Therefore you need to
specify with ACLs the traffic that you want to handle in a different way.
i.e
If you have a web server inside the ASA (allow port 80 through the ASA to the IP of the server)


The router by default permits all traffic in all directions, so you can apply ACLs as well.

Determine what services need to be allowed (inbound) and if something has to be filtered (outbound), and
we start from there.

Federico.

Actions

This Discussion