Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
868
Views
0
Helpful
2
Replies

DMZ-Web server set up

Amos Kafwembe
Level 1
Level 1

‎10-28-2013 01:06 PM

hey all,

I need to set up a web server in a DMZ on an ASA5505. I am not too confident on the ASA5505 though, anyone with a sample config i can go with? I need to permit FTP as well as http traffic to it.

thanks!

Labels:
0 Helpful
2 Replies 2

Vance Kwan
Cisco Employee
Cisco Employee

‎11-05-2013 10:44 PM

Amos,

Are you referring to a Cisco Ironport Web Security Appliance?  How will you be deploying this?  Transparent or Explicit?

Note that the only supported deployment is where the clients reside behind the same firewall interface as the WSA.  Though you can still make ends meet...

-Vance

0 Helpful

Karsten Iwen
VIP
VIP

‎11-06-2013 12:55 AM

Please move this post to "Firewalling", this sub-forum is about the web-security-appliances.

On your ASA you have to configure two things:

  1. Configure NAT or port-forwarding for the DMZ-server
  2. Allow the ftp- and http-traffic on the outside access-list

The commands are dependent on the ASA-version you are running.

-- 
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni

0 Helpful
Customers Also Viewed These Support Documents