[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

Installing a new ethernet card for dmz

Posted on 2006-11-13
3
Medium Priority
?
247 Views
Last Modified: 2010-04-09
what is the security setting i should use? 0-100?
0
Comment
Question by:jaysonfranklin
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 3

Expert Comment

by:bugsaif
ID: 17931187
Outside = 0
DMZ = 50 (actually any value between 1 and 99 will do... 50 give you room to play :)
Inside = 100

Saif
0
 
LVL 1

Author Comment

by:jaysonfranklin
ID: 17931809
I probably should have put this in the initial question so i apoligize. What does this number 0-100 represent? I want the dmz to be as secure as possible, only a few people will actually be accessing the box in the dmz by way of vpn. So if i put it at 50, what does it mean that i have room to play?
0
 
LVL 3

Accepted Solution

by:
bugsaif earned 500 total points
ID: 17932863
the number 0-100 represents the trust-worthiness of the interface... 0 being least trusted and 100 being most trusted. These security levels are used by the PIX's ASA to determin what traffic can go where.

Read up here... these will explain it much better than I can...

http://www.examcram2.com/articles/article.asp?p=101741&seqNum=5&rl=1
http://www.enterastream.com/whitepapers/cisco/pix/pix-practical-guide.html

Saif
0

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Visualize your data even better in Access queries. Given a date and a value, this lesson shows how to compare that value with the previous value, calculate the difference, and display a circle if the value is the same, an up triangle if it increased…
In this video, Percona Solution Engineer Rick Golba discuss how (and why) you implement high availability in a database environment. To discuss how Percona Consulting can help with your design and architecture needs for your database and infrastr…
Suggested Courses

649 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question