Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

DMZ to inside and inside to Dmz

I am trying to setup a dmz to talk to my internal network and the internal network to talk to the dmz.

Any ideas

3 REPLIES

Re: DMZ to inside and inside to Dmz

Create the translation-

static (inside,intf2) 1.30.30.0 1.30.30.0 netmask 255.255.255.0

The add an ACL to restrict traffic-

access-list dmz_access_out permit udp any host yyy.yyy.yyy.9 eq 53

Then apply to the interface-

access-group dmz_access_out in interface intf2

Hope that helps

New Member

Re: DMZ to inside and inside to Dmz

Thanks for the reply chris.

I need to allow all traffic to the internal network from the DMZ and All traffic from the DMZ to the internal network.

Re: DMZ to inside and inside to Dmz

access-list dmz_acl permit ip 172.30.30.0 255.255.255.0 1.30.30.0 255.0.0.0

access-group dmz_acl in interface intf2

inside has default permit any so you're OK there.

167
Views
0
Helpful
3
Replies
CreatePlease to create content