02-21-2024 06:18 AM
Hello community,
Is it a best practice to configure dedicated real IP address on P2 port on cisco WSA or we should use NAT ?
If it is OK to dedicate real IP address, what are the security protections that can be enabled on Cisco WSA ?
Thank you!
Solved! Go to Solution.
02-21-2024 06:33 AM
02-26-2024 03:11 AM
As Ken mentioned, the best practice is to use private IP address in your P2 interface and NAT the IP in your Firewall/router.
in this case, you can block all the unwanted traffic, and just allow TCP/80,443 (due to your network needs and design) to the internet
please allow me to share the firewall configuration guide :
Regards,
Amirhossein Mojarrad
+++++++++++++++++++++++++++++++++++++++++++++++++++
++++ If you find this answer helpful, please rate it as such ++++
+++++++++++++++++++++++++++++++++++++++++++++++++++
02-21-2024 06:33 AM
02-21-2024 06:56 AM
Thank you, Ken!
What is the best practice - dedicated real IP or NAT ?
02-21-2024 07:06 AM
02-26-2024 03:11 AM
As Ken mentioned, the best practice is to use private IP address in your P2 interface and NAT the IP in your Firewall/router.
in this case, you can block all the unwanted traffic, and just allow TCP/80,443 (due to your network needs and design) to the internet
please allow me to share the firewall configuration guide :
Regards,
Amirhossein Mojarrad
+++++++++++++++++++++++++++++++++++++++++++++++++++
++++ If you find this answer helpful, please rate it as such ++++
+++++++++++++++++++++++++++++++++++++++++++++++++++
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide