I have a dmz interface running on network 192.168.2.0 and inside network running on 192.168.1.0. I want all of my devices on dmz to connect to devices on inside network. What conduit commands I could use in conjuction with the command below to open the whole network from dmz to inside.
That kind of configuration is completely unsecure. What you want, is opening completely your internal network from DMZ, and this one, by definition, is open to the Internet, then internal nets will be open to the Internet through DMZ servers. Of course, it's possible to do that, but you shouldn't. But, if you absolutely want that config, move your servers to inside and kill your DMZ network, you don't need it anymore. Don't forget, F/Ws aren't miracle box against hackers. They just filtered out some attacks based on the security you have configured on it. Then, f/w is as good as the person who has configured it.
If you want some advices on this subject, you can contact me directly.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...