Cisco ASA 5505 Getting Started Manual page 59

Adaptive security appliance

Hide thumbs Also See for ASA 5505:

Configuration manual (1822 pages)

Administrator's manual (118 pages)

Getting started manual (114 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

page of 168

/ 168
Contents
Table of Contents
Bookmarks

Table of Contents

Chapter 6

Scenario: DMZ Configuration

Figure 6-3

An Inside User Visits an Internet Web Server

Source Address Translation

192.168.1.2

78-18003-02

www.example.com

209.165.201.225

Inside interface

192.168.1.1

Inside

User

192.168.1.2

When an inside user requests an HTTP page from a web server on the Internet,

data moves through the adaptive security appliance as follows:

The user on the inside network requests a web page from www.example.com.

The adaptive security appliance receives the packet and, because it is a new

session, verifies that the packet is allowed.

The adaptive security appliance performs network address translation (NAT)

to translate the local source address (192.168.1.2) to the public address of the

outside interface (209.165.200.225).

Internet

Public IP Address

209.165.200.225

(outside interface)

DMZ interface

10.30.30.1

Web Server

Private IP Address: 10.30.30.30

Public IP Address: 209.165.200.225

ASA 5505 Getting Started Guide

Example DMZ Network Topology

DMZ

6-5

Table of Contents

Show Quick Links

Quick Links:
Chapter 1 Before You Begin
Scenario 1: Private Network with External...

Hide quick links:

Table of Contents

Cisco ASA 5505 Getting Started Manual page 59

Hide quick links:

Related Manuals for Cisco ASA 5505

Related Products for Cisco ASA 5505

Table of Contents