DMZ configuration on ASA 5505

InSearchOf used Ask the Experts™
I have an outside vendor that needs to communicate to their equipment on our inside network. I would like to set up a DMZ for that access. I have 5 public IP addresses to use. The ASA i want to set up is strictly for this use and no other. I have four devices on the inside that will have static IPs which will require certain ports to be opened. This is what they require. I do not have a config to post as of yet. I am trying to configure one.

Four static private IPs
External port forwarded to internals
  Port 90 Open - 1st internal IP
  Port 91 Open  - 2nd internal IP
  Port 2048 Open - 2nd internal IP
  Port 92 Open - 3rd internal IP
  Port forward 2049 to 2048
  Port 93 Open - 4th internal IP
  Port forward 2050 to 2048

Any suggestions would be greatly appreciated.
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Which ASA version are you using?

your vendor's equipment can't be in your insde network if you wanna put it in dmz. unless it has 2 network card but there would be almost no point in doing a DMZ then.
InSearchOfIT Director


I am using version 9.1(6) and no it not on my inside network. I want to isolate the vendor equipment from my inside network.
what license do you have? is it an ASA5505 ? or newer? sec-plus license?
InSearchOfIT Director


It is an ASA5505 with a basic license. 10 user.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial