Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
491
Views
0
Helpful
1
Replies

DMZ Question Please

mike.scaggs
Level 1
Level 1

‎12-06-2001 08:27 PM - edited ‎03-08-2019 09:21 PM

Okay here it is.

I want to let port 80 traffic from the DMZ to my inside net but not the the outside.

Outside 134.186.1.0/24

inside 134.186.2.0/24

dmz 134.186.3.0/24

Here what I think I should do:

static (dmz,outside) 134.186.1.0 134.186.1.0

static (inside,dmz) 134.186.2.0 134.186.2.0

access-list acl_dmz permit tcp any host 134.186.2.0 255.255.255.0 eq 80

access-group acl_dmz in interface dmz

Does this only let port 80 traffic to my inside and deny all the rest? If not, where did I go wrong?

I just listed the networks to make the example easier.

Mike

Labels:
0 Helpful
1 Reply 1

rcrowe
Level 1
Level 1

‎12-07-2001 07:49 AM

looks good

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents