Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
322
Views
0
Helpful
1
Replies

Cisco ASA5505 - DMZ Connection

kpayton12
Level 1
Level 1

‎06-13-2012 06:12 PM - edited ‎03-07-2019 07:14 AM

My first time programming a Cisco ASA - Have to get my feet wet sometime right?

Anyways I''m trying to setup up Ethernet 0/6 to be a DMZ Connection

When I add port 0/6 to DMZ it gives me an error saying "The IP Address X.X.X.X /Subnet Mask cannot overlap the subnet of interface outside"

So my question is I have an outside connection already configured - How can I make a DMZ connection with the same subnet mask with a different IP?

Labels:
0 Helpful
1 Reply 1

Mitchell Dyer
Level 1
Level 1

‎06-13-2012 07:24 PM

Hello Kevin,

You will need to setup the DMZ interface in a different subnet using an address range from RFC1918 (192.168.0.0-192.168.255.255, 172.16.0.0-172.172.31.255.255, 10.0.0.0-10.255.255.255) and then NAT traffic from the 'dmz' to the 'outside'. You will also need to modify the access-lists accordingly.

Please post your config and I'd be happy to get you pointed in the right direction, also -- please indicate whether you are using a base or security plus license and what software version you are running (both items can be found by issuing "show version").

-Mitch

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card