Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

ASA 5520 - secure vlans behind firewall

Devices behind firewall all on one network but dept stated they want their server to be "isolated" while still on same network.

Is my only option to create another context and place server in it? For just a single server this seems like overkill, not to mention wasting a context for just one server (no other servers will be behind firewall).

Can i create a separate vlan (behind firewall) and secure it that way or maybe create DMZ for just this server.....server is accessed by devices on both inside AND outside network.

Thanks for info.

1 REPLY

Re: ASA 5520 - secure vlans behind firewall

Can i create a separate vlan (behind firewall) and secure it that way or maybe create DMZ for just this server.....server is accessed by devices on both inside AND outside network.

I would go your second solution in your post, create subinterface in ASA maybe with a /30 or /29 and Isolate the server , you can then provide block access or allow through acls form inside to it as well as provide access to it from the outside.

Rgds

-Jorge

113
Views
0
Helpful
1
Replies
CreatePlease to create content