07-11-2019 09:47 PM
Hello Friends!
This is my first professional job to handle my company data center. Now they require Security for their data center. There is no any firewall implement yet. I have Cisco firewall 5505 want to configure as transparent. I don't know much more about security.
So i want to discuss what are the policies should be apply for my Data Center as transparent firewall.
Thanks!
07-12-2019 12:17 AM
here is the the tranaparent FW deployment config :
Polices are based on the business requirement, most of DC required http / https other commpn ports for the external people to connect in.
07-12-2019 03:31 AM
OUTSIDE and INSIDE should have same network like a switch, and use traffic inspect policy, like inspect icmp, ftp, http etc.
You can find it at Configuration -> Firewall -> Inspect policy -> global policy. You don't need acl's because the security level will deal with the traffic flow, also you can use arp filtering.
Check this link https://www.cisco.com/c/en/us/td/docs/security/asa/asa82/configuration/guide/config/fwmode.html
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide