Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
626
Views
0
Helpful
3
Replies

routing internal dmz

dlee_gmail
Level 1
Level 1

‎04-13-2020 12:16 AM

hi! we've the following routing questions to check. This is the scenario in the environment. We have an ERP system running in the cloud, and this ERP system will need to communicate with the manufacturing system in the OT network for example via certain port/services, or printing and vice versa. As a best practice, we try not to pass the traffic directly thru the OT FW which isolate the IT from OT, but thru the internal dmz instead. This internal dmz is a port from the OT FW.

 

How can this be done from the OT FW point of view?

cloud-> IT -> internal dmz -> OT

OT->internal dmz-> IT -> cloud.

 

cloud 10.0.1.0/24

IT 10.0.2.0/24

internal dmz 172.16.1.x/24 <-OT FW that isolate IT from OT. One port to IT, one port to internal DMZ, and one port to OT.

OT 192.168.1.x/24

 

Labels:
0 Helpful
3 Replies 3

dlee_gmail
Level 1
Level 1

‎04-13-2020 06:52 PM

hi! anyone has any idea on that? thx.

0 Helpful

dlee_gmail
Level 1
Level 1
In response to dlee_gmail

‎04-13-2020 06:59 PM

the OT FW

Port1 - IT network

Port2 - Internal DMZ

Port3 - OT network

0 Helpful

paul driver
VIP
VIP
In response to dlee_gmail

‎04-14-2020 06:31 AM

Hello

Can you post a simple topology diagram so we can visualize what your trying to achieve? 


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card