Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Standard template for a ASA Firewall 5520 & Router which is Connected to Internet

Hello Guys,

I am looking for a Standard template for a ASA Firewall 5520 & Router which is Connected to Internet Link.

Connectivity:-

Coreswitch ----->  ASA Firewall 5520 ---------------->  Cisco Router -----10MB Leases line link------------- ISP Cloud.

     |                     |

     |mgmt port      |

     |                     |

     |                     | Outsdie Int

     Blue Coat 3500

          |

          |

          |

          | Inside Interface

          DMZ Switch.

I wanted to know what all security standards i need to follow on Cisco Router & ASA  like blocking ports and applying ACLs and etc.

It would be great if any also helps me on bluecoat 3500 to set a good config to monitor the most used bandwidth.

Appreciate all your help.

Regards,

KA.

1 REPLY

Re: Standard template for a ASA Firewall 5520 & Router which is

Hi,

By default the ASA allows all outgoing traffic and blocks all incoming traffic. Therefore you need to
specify with ACLs the traffic that you want to handle in a different way.
i.e
If you have a web server inside the ASA (allow port 80 through the ASA to the IP of the server)


The router by default permits all traffic in all directions, so you can apply ACLs as well.

Determine what services need to be allowed (inbound) and if something has to be filtered (outbound), and
we start from there.

Federico.

252
Views
0
Helpful
1
Replies