Hi all.
I'm not new to firewall config but acutally is the first time I need to configure a PPPoE on a Cisco ASA.
IP and def-route will be received via DHCP but I already know which IP will be assigned. I will have only 1 IP public IP address.
The network is really basic: inside and outside, no DMZ. The use a server (internal) that will be published on the internet with different services.
Now my question(s) is pretty simple, does this configuration will work?
interface Ethernet0/0
switchport access vlan 2
!
interface Ethernet0/2
!
interface Vlan1
nameif inside
security-level 100
ip address 10.1.1.10 255.255.255.0
!
interface Vlan2
nameif outside
security-level 0
pppoe client vpdn group internet
ip address pppoe setroute
!
vpdn group internet request dialout pppoe
vpdn group internet localname id@domain.x
vpdn group internet ppp authentication chap
vpdn username id@domain.x password <mypass> store-local
dhcpd auto_config outside
object network Outside_IP
host <my_PUBLIC_ip>
object network MyInternalServer
nat (inside,outside) static Outside_IP
!
nat (inside,outside) after-auto source dynamic any interface
access-group inside_access_in in interface inside
access-group outside_access in interface outside
object-group service Services_myServices tcp
port-object eq 26675
port-object eq 3389
port-object range 5678 5679
port-object eq 5721
port-object eq 990
port-object eq 999
port-object eq https
access-list inside_access_in extended permit object-group Permit_Surfing 10.1.1.0 255.255.255.0 any log
access-list outside_access extended permit tcp any4 object MyInternalServer object-group Services_MyServices log
Thanks for your help