Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi, I have a client with the diagram below, we beleave having a missconfiguration in NAT. Because:Inside computers 192.168.15.0/24,192.168.115.0/24 can´t access outside networks. But can acess webserver on DMZ.Outside networks acess DMZ and inside c...
Hi,I need to do costum service traffic inspection to a SQL server inside interface communicate with the dmz interface server.I need INSIDE useres access(http/https and other site in port 100) my web server(DMZ) which have a service that accesses the ...
Hi,I´m have one http server on my inside switchport responding in por 8888 and I want it to be accessed from the out side.Server inside: 192.168.15.1:8888Outside IP: xx.xx.xx.66:100Can any one tell me what i´m doing wrong, or dont doing?ASA Version 8...
Hi,To put my Webserver(DMZ) comunicating with my SQLSERVER(INSIDE) I made exemption of nat in outbound in both directions. Is this secure?The protection of inside network trough nat isn´t compromised?Is there any other or more secure way to do it?K...
Hi,I´m having problems in configure my ISP Static address. After reading I know that ASA 5505 share phisical mac address to all ports off the switch. And in ASDM I access to the interface and in advanced option is possible to configure one mac.But wh...
Hi,Donate for charety. lolUpgrade it, because with basic license you cant use failover. And even in Sec Plus license you can´t do stateful failover. Wich means, every time that a equipment of the peer fails all connection have to reestart again.Take ...
Hi,I bealeve that you must to edit your policy map and add to your default inspection the smtp traffic.policy-map global_policyclass inspection_default inspect smtpBecause your dmz is more trustable than the outside interface, I think you must inclu...
.png "Antonio Simoes"){kind=avatar}
