Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

ASA 8.x in transparent mode with DMZ

I just want to confirm that a DMZ cannot be used in transparent mode. I have a need to be in transparent mode, but also need a DMZ. Are there any workarounds?

My other choice is to NAT the servers in the DMZ to an address space that exists on the outside.

2 REPLIES

Re: ASA 8.x in transparent mode with DMZ

Hi,

You could have 2 contexts. Allocate 2 separate interfaces to context #1 (running on transparent mode) and the rest to context #2 (running on route mode). Of course there is some design involved but this is probably your way around it if applicable on your topology.

I hope it helps .. please rate helpful posts.

Re: ASA 8.x in transparent mode with DMZ

For the ASA firewall in multiple context mode, you can use only one firewall mode for all contexts, i.e, either transparent or routed mode.

Only starting from ASA/PIX 8.0(2), NAT/PAT is supported in the transparent firewall.

In FWSM, its possible to have mix of both transparent and routed mode firewall contexts on the same box.

955
Views
0
Helpful
2
Replies
CreatePlease to create content