?
Solved

Configuring Cisco ASA 5520 with two T1 interfaces

Posted on 2008-11-14
4
Medium Priority
?
409 Views
Last Modified: 2012-05-05
We are trying to seperate traffic on our network. We have a T3 on our main network for Internet traffic and we added another T1 for our Ecommerce server. Our main network is 192.168.100.0 (Inside) and we want to use 10.30.30.0 (DMZ-Inside) for our Ecommerce network, and would like to be able to access Ecommerce from our main network. We are setup on Ecommerce to see the server from a public IP, but we cannot see it internally. Suggestions?
0
Comment
Question by:jgonz
  • 2
  • 2
4 Comments
 
LVL 5

Accepted Solution

by:
wilsj earned 375 total points
ID: 22969055
if you have a global and nat entry for the dmz then all you need is an ACL allowing the traffic from the dmz interface to the inside interface. Something like this should work.

global (dmz) 1 interface
nat (dmz) 1 0.0.0.0 0.0.0.0

access-list dmz_in permit tcp host 10.30.30.x eq www any
access-group dmz_in in interface dmz

0
 

Author Comment

by:jgonz
ID: 22972642
We figured we would need an access list, but we have four interfaces - two Outside (T3 and T1) and two Inside:
Outside - 70.251.X.X
DMZ - 12.234.X.X
Inside - 192.168.100.0
DMZ-Inside 0 10.30.30.0
0
 

Author Comment

by:jgonz
ID: 22972644
Correction:

We figured we would need an access list, but we have four interfaces - two Outside (T3 and T1) and two Inside:
Outside - 70.251.X.X (public IP)
DMZ - 12.234.X.X (public IP)
Inside - 192.168.100.0
DMZ-Inside - 10.30.30.0
0
 
LVL 5

Expert Comment

by:wilsj
ID: 22973107
When you can. Could you post the info directly from your ASA. I would like to see the security on the dmz-inside interface and your nat, global and static statements for the dmz-inside.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
A 2007 NCSA Cyber Security survey revealed that a mere 4% of the population has a full understanding of firewalls. As business owner, you should be part of that 4% that has a full understanding.
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Whether it be Exchange Server Crash Issues, Dirty Shutdown Errors or Failed to mount error, Stellar Phoenix Mailbox Exchange Recovery has always got your back. With the help of its easy to understand user interface and 3 simple steps recovery proced…
Suggested Courses
Course of the Month17 days, 5 hours left to enroll

862 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question