ASA 5580

Unanswered Question
Sep 27th, 2010

I wanted to find out if It is possible to  created a network groups for dmz hosts to access inside host with no service group. I just want to allow some perticular servers to communicate to inside.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
ARMANDO ALVARADO Mon, 09/27/2010 - 08:27

So that I understand this correctly. You can use this and the servers in the dmz will still communicate with the inside host with its nat address. Correct.

I using the same inside address for the nat.  I forgot to mention that also sorry. This is going to be for a virtual enviroment. Just trying to secure the group.

Jennifer Halim Mon, 09/27/2010 - 21:40

Sorry, not very clear on what you are trying to achieve after the second post.

Are you trying to configure grouping so you can configure the access-list more effectively?

What version of ASA 5580 are you running?

Can you please share the topology and what exactly you are trying to achieve. Thanks.


This Discussion