Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1065
Views
35
Helpful
17
Replies

ASA 5510 DMZ creation

Go to solution
vipinrajrc
Level 3
Level 3

‎11-13-2011 11:05 PM - edited ‎03-11-2019 02:49 PM

Hi,

I need to implement a DMZ in my office. Before talking about the configuration , i would like to know best practises of implementing DMZ.

My questions are

1) is traffic from inside to DMZ is permit by default?

2) What about DMZ to Inside traffic ?

3) Is it necessary to do a NAT from inside to DMZ with the same IP as of inside

4) What is the use of " static (inside,dmz) 192.168.1.0 192.168.1.0 netmask 255.255.255.0 ? is it a no nat statement?

5) Is it necessary to permit traffic from DMZ to inside?

6) Suppose i have a web server in DMZ, for inside host whether it will take path through ASA or path through internet?

Please share your advices

Thanks

Vipin

Thanks and Regards, Vipin
Labels:
0 Helpful
17 Replies 17

Go to solution
varrao
Level 10
Level 10
In response to vipinrajrc

‎11-14-2011 08:09 PM

I am not sure about Trend Micro, but if it has to go to some other server on the internet for updates, then it woudl use the ports mentioned above.

Varun

Thanks,
Varun Rao

Go to solution
vipinrajrc
Level 3
Level 3
In response to varrao

‎11-14-2011 08:13 PM

Hi,

Thanks I will check and update. thanks for your help.....................

Vipin

Thanks and Regards, Vipin
0 Helpful

Go to solution
varrao
Level 10
Level 10
In response to vipinrajrc

‎11-14-2011 09:09 PM

Sure let me know if you face any issues

Thanks,

Varun

Thanks,
Varun Rao
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card