Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

How to allow Only https to communicate with the Office web server

Hi All,

I have a ASA 5505 Firewall Installed in our network. On our office network there is a SQL Server running that communicates with our website for live data.

I need only https communication to occur between the webserver and our internal server.

at present I have 2 rules applied as below/attached.

xx.xx.xx.40 is the leased line.

The problem with the present setting is that there are failed login attempts to SQL Server hence I need to secure it.

Thank you

1 REPLY
VIP Purple

The highlighted line allows

The highlighted line allows SQL from the whole internet to your internal server which is always a bad idea (same for line 10). This line should be removed. And if the webserver only needs HTTPS, then also the line 8 can be removed.

165
Views
0
Helpful
1
Replies
CreatePlease to create content