how to configure dmz on 2821 with multiple public ip address

Unanswered Question
Sep 8th, 2010
User Badges:

I have a cisco 2821 with two ethernet interfaces and one 8-port HWIC card.


On one ethernet with a public ip address(Untrust), and the other with internal network 10.5.0.0/16(Trust).


On the 8-port card I plan to configure as DMZ with multiple public ip addresses, and connect several web servers to be accessed from internet -- I had trouble doing it -- is this possible? And what is the right way to do it?


Thanks in advance, Keith

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
keith.gao Wed, 09/08/2010 - 17:49
User Badges:

Thank you, Nagaraja and TodirascuOvidiu.


Cisco support helps out on this one:


In other words, traffic destined to the DMZ Server was coming in through the

T1 link on the DMZ and trying to go out the Out-Zone.

I configured PBR on VLAN1 to force the return traffic from the DMZ Servers out the T1.

Actions

This Discussion

Related Content