we are planning to use multiple DMZ's in our organization, we are using cisco asa 5585, what is the advantage and disadvantage for using multiple DMZ's?. and which better to use one or two DMZ's or split every service in different DMZ ?
We have 2 ASA 5585 ( active\standby) and we are using EtherChannel to connect the ASA to internal Aggregate switch 2 core switches 6509 ( VSS), Is it possible to connect the ASA's (active and standby) in the same port-channel group and use one port-c...
We have 2 ASA (Active/standby) and 2 Internet connections with 2 Routers; i need to split traffic goingThrough the ASA, the E-Learning traffic going to ISP1 and all other traffic going through ISP2 ?and still automatic failover occur. if the ISP1 dow...
We are comparing between different web filtering solutions. Including cisco WSA and one of points is to know the maximum throughput for each solution. Also we already have cisco WSA S370 and we don't know the bandwidth for it. Also it's not mentioned...
Hi Hobbe,sorry for late,I'm going to the same result, with combining between the benefit of using DMZ's and PVLAN's. I really appreciate your answers and explanations. It is very helpful.Also i found a very good Doc. that can help to complies PVLAN'...
Hi Hobbe,Realy HTH,So, your point of view as the same of mine, but let me clarify one more thing. If fx i have 2 different services using the same OS ( Sun Solaris 10) and same application ( Oracle web center). if the attacker gain access to one of t...
Hi Varun,Thanks for your valuable information, regarding natting and access-rules that is exactly why i need to decide to use one or more DMZ, let me tell you what I’m thinking about the design.let say i have one big DMZ holding all web-tier and appl...
