Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
583
Views
0
Helpful
1
Replies

Design Consideration for Vendor/DMZ network.

amohabir1
Level 1
Level 1

‎04-07-2008 06:31 AM - edited ‎03-03-2019 09:26 PM

Hello Fellow Net Pro's

I am currently working on a design that includes an extranet/vendor dmz network protected by a couple of ASA 5520's running ospf.

The inside interface of the router is part of area 0 while the dmz interface is part of area 20.

This dmz network will have various vendor routers advertising various routing protocols to the ASA's.

What is the best approach to setting up the proper advertisements from my internal network to the various vendors.

Lets assume all of the vendors have to see all of the same routes from my network.

What type of filters should I be applying, and what security precautions should I be looking out for. I also dont want to become some sort of transit area that starts advertising networks from one vendor to the other.

Labels:
0 Helpful
1 Reply 1

smahbub
Level 6
Level 6

‎04-14-2008 04:43 AM

For avoiding advertisement of one vendor networks to other the sample configuration is present in the document present in the URL given below.this will help in setting up the security as you need.

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00809763ea.shtml

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card