Dmz Deployment - Cisco ASA 5505 Getting Started Manual
Adaptive security appliance
Hide thumbs
Also See for ASA 5505:
- Configuration manual (1822 pages) ,
- Getting started manual (168 pages) ,
- Administrator's manual (118 pages)
Table of Contents
Advertisement
Chapter 3
Planning for a VLAN Configuration
DMZ Deployment
78-17612-02
The only deployment for which you must create three VLANs is when you have
a DMZ to protect in addition to your Inside network. If you have a DMZ in your
configuration, the DMZ must be on its own VLAN.
Figure 3-3
Deployment Requiring Three VLANs
Adaptive Security
Appliance
Printer
Personal computers
Private
(Inside) Network
In this example, three physical switch ports are allocated to the Inside VLAN, two
switch ports are allocated to the DMZ VLAN, and one switch port is allocated to
the Outside VLAN. Two switch ports are left unused.
Outside Network
(Internet Connection)
Internet
ISP
Router
PO
WE
Cis
48
VD
R
co
AS
C
A SS
C-0
5
Sta
7
tus
Sec
POW
ER
uri
ty
ove
r ETH
Ser
ERN
vic
es
ET
6
Ca
rd
Slo
5
t
4
3
2
co ns
ole
1
0
1
2
RE
SE
T
Cisco ASA 5505 Getting Started Guide
Deployment Scenarios Using VLANs
DMZ
Web Server
Email Server
3-7
- Quick Links:
- Chapter 1 Before You Begin
Hide quick links:
Advertisement
Table of Contents
