Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
223
Views
0
Helpful
1
Replies

Where and how should I configure my Concentrator 3030 interfaces

tgroth
Level 1
Level 1

‎10-30-2002 07:11 AM - edited ‎03-09-2019 12:53 AM

My Company has a Concentrator 3030 and I need some advice on setting up my private and public interfaces. We want to be able to have people hit the 3030 from the outside world and from the inside so what would be the best way to set the 3030 up. We have a pix 520 with 5 DMZ’s (0, 5, 10, 50, and 100).

Public Interface

1. Should I place the public interface in DMZ 0?

2. If I do place the public interface in DMZ 0 should I give the public interface a routable IP address or should I give it a non routable IP address and forward traffic to the non routable IP address with the pix?

3. If I use a non routable IP address what will I have to forward from the pix?

Private interface

1. Should I place the private interface in a DMZ or should I place the private interface on the internal network?

2. If I put the private interface on a DMZ, what DMZ should I place it on?

3. If I place the private interface on a DMZ what will I need to open up to that non routable IP address?

Also what is the external interface suppose to be used for?

Any suggestions would be greatly appreciated.

Labels:
0 Helpful
1 Reply 1

edadios
Cisco Employee
Cisco Employee

‎10-31-2002 06:42 PM

Please go through this link: http://www.cisco.com/warp/public/471/vpn_3000_faq.shtml .

The external interface is like a dmz interface. If you are going to use it, you need to assign a filter on it.

Regards,

0 Helpful
Customers Also Viewed These Support Documents