Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA 5510 Trying to setup DMZ and Internal--external traffic.

I'm trying to find a great configuration guide. I'm in the process of migrating from a Netscreen 10. I've setup my ASA according to the documentation available for the ASA version 8.0 and used ASDM version 6.1 as well.

I can ping out of the interfaces from the Management IP. I am unable to pass any normal traffic in any direction.

I opened all interfaces to an any, any, any rules without success both inbound and outbound on all interfaces.

Anyone have a great book recommendation?

2 REPLIES

Re: ASA 5510 Trying to setup DMZ and Internal--external traffic.

New Member

Re: ASA 5510 Trying to setup DMZ and Internal--external traffic.

Thanks for the book suggestions. Any one better than another?

The current Network is up and running on a Netscreen 10. I'm trying to swap it out with an ASA 5510 to increase throughput.

I've left out all the VPN's on purpose...I'm justing trying to get the DMZ, WEB, Mail, and internet browsing working first.

I've not been able to get any traffic to flow in any direction when I swap the Firewalls and Test.

I've attached a clean config with dummy IP's

I have External of 172.16.1.0 255.255.255.0

I have Internal of 192.168.0.0 255.255.255.0

I have a DMZ of 192.168.154.1 255.255.255.0

I have 4 external web addresses 172.16.1.8,

172.16.1.135, 172.16.1.136, and 172.16.1.207

These are mapped to Internal or DMZ addresses.

172.16.1.135 depending on the port forwards to either a DMZ(http, Domain) address of 192.168.154.6 or Internal(Https,SMTP) 192.168.0.4

199
Views
2
Helpful
2
Replies