Table of Contents
Advertisement
Networking
Configuring the DMZ
STEP 1
STEP 2
STEP 3
Cisco ISA500 Series Integrated Security Appliance Administrator Guide
HTTP traffic to the web server at 172.16.2.30. The firewall rule specifies an
external IP address of 209.165.200.226. Internet users enter the domain name that
is associated with the IP address 209.165.200.226 and can then connect to the
web server.
Click Networking -> DMZ.
The DMZ window opens.
To add a DMZ, click Add.
Other options: To edit an entry, click Edit. To delete an entry, click Delete.
After you click Add or Edit, the DMZ - Add/Edit window opens.
In the Basic Setting tab, enter the following information:
•
Name: Enter the name for the DMZ.
•
IP Address: Enter the subnet IP address for the DMZ.
•
Netmask: Enter the subnet mask for the DMZ.
•
Spanning Tree: Check the box to enable the Spanning Tree feature to
determine if there are loops in the network topology.
•
Port: Specify a configurable port as a DMZ port. The traffic through the DMZ
port is directed to the DMZ. All available configurable ports appears in the
Port list, choose a port and click ->Access to add it to the Member list. The
selected configurable port will be set to a DMZ port with Access mode. All
data going into and out of the Access port is untagged.
This setting will change the port type and access mode of the
NOTE
selected configurable port. Changing the port type will wipe out all
configurations relative to the physical port.
Up to five DMZ interfaces can be configured for ISA570 and
NOTE
ISA570W. Up to four DMZ interfaces can be configured for ISA550
and ISA550W.
•
Zone: Choose the default or custom DMZ zone to which the DMZ is mapped.
4
125
Hide quick links:
Advertisement
Table of Contents
