Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
444
Views
0
Helpful
1
Replies

recommended approach from DMZ to Inside

Go to solution
kunal-united
Level 1
Level 1

‎10-05-2011 06:27 AM - edited ‎03-11-2019 02:34 PM

Hi,

What is the recommended approach for the traffic from DMZ to Inside

1. Do you apply access-list from lower security to higher OR

2. Do you apply NAT

Any other views for the traffic pattern security are most welcomed.

Thanks,

Kunal

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
varrao
Level 10
Level 10

‎10-05-2011 06:40 AM

Hi Kunal,

You woudl definitely need an ACL when you are going from dmz to inside.

Nat depends, if you have a nat-control enabled then you woudl need it, other wise not. But if you are accessing any server on its public ip then you would need nat, irrespective of if you have nat-control or no nat-control

How to check nat-control:

show run nat-control.

Hope that helps.

Thanks,

Varun

Thanks,
Varun Rao

View solution in original post

0 Helpful
1 Reply 1

Go to solution
varrao
Level 10
Level 10

‎10-05-2011 06:40 AM

Hi Kunal,

You woudl definitely need an ACL when you are going from dmz to inside.

Nat depends, if you have a nat-control enabled then you woudl need it, other wise not. But if you are accessing any server on its public ip then you would need nat, irrespective of if you have nat-control or no nat-control

How to check nat-control:

show run nat-control.

Hope that helps.

Thanks,

Varun

Thanks,
Varun Rao
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card