Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Newbie question

I have a 2924 switch in the dmz and it currently has an external IP address. My question is should I have an ip on this device and if so how can I set it up so that

1. It does not respond to pings

2. Only certain IPs are allowed to telnet to it

3. I would like to implement SSH on it if possible.

Also any helpful hints or docs on securing it would be helpful.

Thanks

  • Other Network Infrastructure Subjects
1 REPLY
New Member

Re: Newbie question

I hope you are having a firewall like PIX. In that case you should configure for Conduit statemet (Or Access lists)to allow some IP and deny all the other IP addresses.

This link has an example for configuring a mail server in DMZ. In your case replace Mail server with the switch.

http://www.cisco.com/warp/public/110/mailserver_dmz.html

78
Views
0
Helpful
1
Replies
This widget could not be displayed.