Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
686
Views
5
Helpful
1
Replies

Configuration of DMZ in Cisco Pix

kjanakiraman
Level 1
Level 1

‎12-01-2002 09:57 AM - edited ‎02-20-2020 10:24 PM

Hi,

I have cisco pix 515 with three interface cards. I have configured one as outside and the other as inside and i am hosting all my webservers,mail servers in the inside network. The internal interface card is connected to Cisco 3640 Router and then to our internal network. Now i wanted to move the public access webservers and mail servers behind the other interface card of the pix so that i could block all the incomming ports for my internal network and open the necessary ports in the other interface card for the public servers. Can some advice me how to proceed in this.

Thanks in Advance

0 Helpful
1 Reply 1

ozsmac
Level 1
Level 1

‎12-01-2002 02:30 PM

Shouldn't be too much of a problem. First thing i would recommend is to upgrade your PIX to the latest versions of code, specifically PDM (PIX Device Manager). The configuration issues should be a whole lot simpler with PDM.

With the creation of your new network zone, dmz, your major choice is to establish how you are going to deal with NAT. Given that you already have internal devices shown publicly i would suspect you have NAT statements already, all you should need do is re address the hosts and change the NAT statements.

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card