Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

DMZ to LAN AD and .NET apps

Is there anything special that needs to be done to have Active Directory and .NET applications talk across the DMZ/LAN segments on an ASA5520? I have static (inside,dmz) 192.168.0.0 192.168.0.0 netmask 255.255.254.0 and access-list inside_to_dmz permit ip 192.168.0.0 255.255.254.0 any applied.

I can communicate both ways through Terminal services from a server on the DMZ to a server on the LAN and vise Versa. I dont have a full AD setup as this is a test setup and not installed yet, but the customer had this question.

2 REPLIES
Green

Re: DMZ to LAN AD and .NET apps

I guess you also have a dmz_to_inside acl?

New Member

Re: DMZ to LAN AD and .NET apps

Yes, it is actually on the other ASA. There is an ASA behind the first ASA, one does IPS, the other CSC, the CSC ASA does not do NAT.

141
Views
0
Helpful
2
Replies
CreatePlease to create content