Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
263
Views
0
Helpful
3
Replies

Configuring DMZs on Cisco 2950

rickypang
Level 1
Level 1

‎01-28-2003 12:14 AM - edited ‎03-09-2019 01:52 AM

I liked to find out if there is any other way to configure DMZ on a Cisco 2950. What I normally do is to create a VLAN for DMZ.

Labels:
0 Helpful
3 Replies 3

Erick Bergquist
Level 6
Level 6

‎01-28-2003 12:58 PM

You could use protected ports also.

Protected ports on the same switch will not be able to communicate with each other. Protected ports can communicate with all other unprotected ports on the switch.

Example would be a colo facility and each customers box would be on a protected port in same VLAN and only one unprotected port in VLAN going to router, etc. This way they can have several customers on the same IP subnet (VLAN) and traffic doesn't go between the ports.

0 Helpful

rickypang
Level 1
Level 1
In response to Erick Bergquist

‎01-28-2003 05:32 PM

do you think you could provide me with a sample configuration for using protected ports?Much appreciated.

0 Helpful

Erick Bergquist
Level 6
Level 6
In response to rickypang

‎01-29-2003 12:31 AM

interface FastEthernet0/1

! This marks the port as a private VLAN edge port.

switchport protected

interface FastEthernet0/2

switchport protected

interface FastEthernet0/3

switchport protected

Protected ports do not forward any traffic to protected ports on the same switch. This means that all traffic passing between protected ports—unicast, broadcast, and multicast—must be forwarded through a Layer 3 device.

.

http://www.cisco.com/en/US/products/hw/switches/ps628/products_configuration_guide_chapter09186a008007e8d6.html#xtocid8

0 Helpful
Customers Also Viewed These Support Documents