Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
426
Views
0
Helpful
2
Replies

ASA with 3 interfaces inside to outside access

dlance
Level 1
Level 1

‎09-20-2010 10:11 AM - edited ‎03-11-2019 11:42 AM

We have what I would call a standard ASA config with 3 interfaces. Inside, DMZ (for web servers) and outside for internet.

We need to allow an inside server to have direct access to an outside resource on the internet.

I want to know if this is as simple as setting up a static NAT from inside to outside and a ACL to allow outbound traffic only.

Dave

Labels:
0 Helpful
2 Replies 2

Nagaraja Thanthry
Cisco Employee
Cisco Employee

‎09-20-2010 10:23 AM

Hello,

You are correct. All you need is NAT and access-list configuration on the firewall to allow inside to talk to internet. You can use either the static NAT or dynamic NAT to enable communication between the inside and the internet.

Static NAT:

static (inside,outside) netmask 255.255.255.255

Dynamic NAT:

global (outside) 1 interface

nat (inside) 1 0.0.0.0 0.0.0.0

Hope this helps.

Regards,

NT

0 Helpful

dlance
Level 1
Level 1
In response to Nagaraja Thanthry

‎09-20-2010 01:25 PM

Thanks

Dave

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card