Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
536
Views
4
Helpful
2
Replies

Expressway-E VMWARE dual interface

waqas sardar
Level 1
Level 1

‎10-29-2014 01:14 PM - edited ‎03-17-2019 12:44 AM

Hi All

There is a firewall between DMZ and Internal network. We have used expressway E as dual interfaces one is in the DMZ and other is in the internal network.

Clint is insisting that there is security risk deploying expressway in this way? Please advice

 

Thanks

Labels:
0 Helpful
2 Replies 2

bernhardczapp
Level 4
Level 4

‎10-30-2014 01:45 AM

Your Client is right!

Expressway E is supposed to be connected to the DMZ network.

If you can use an offical ip without nat address you only need 1 interface.

If you have to use nat then you will need two dmz networks.

 

You can find information within the Configuration Guides:

http://www.cisco.com/c/en/us/support/unified-communications/expressway-series/products-installation-and-configuration-guides-list.html

waqas sardar
Level 1
Level 1
In response to bernhardczapp

‎10-31-2014 05:51 AM

If that host gets compromised then the attacker will be able to innitiate traffics to both interfaces without going across the firewall.

My Question is there any security risk deploying expressway in this way one interface is in DMZ and other is in internal?

 

 

0 Helpful
Customers Also Viewed These Support Documents