Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
440
Views
0
Helpful
2
Replies

ASA DMZ with multiple Servers

cmadiam82
Level 1
Level 1

‎10-17-2007 11:37 PM

Hi all!

we are planning to use the ASA 5510 to host our servers to be accessed from internet. We have six servers (i included network drwing for this one..hehehe), unfortunately we only have one public ip address. How can i configure the ASA to be able to hosts this servers and can be accessed outside? Can you please give me a link or what so ever that i can use to?

thanks in advances guru's!!!

Labels:
27590-DMZ.vsd
0 Helpful
2 Replies 2

Jon Marshall
Hall of Fame
Hall of Fame

‎10-18-2007 08:55 AM

Hi

Can't open the visio so apologies if i have misunderstood.

If the servers are accessed on the same port you can't do this ie. you will need to have 6 separate ip addresses. However if the servers are all accessed on different ports you can do port forwarding eg.

static (inside,outside) tcp "public IP" 23 172.16.5.1 23 netmask 255.255.255.255

static (inside,outside) tcp "public IP" 80 172.16.5.2 80 netmask 255.255.255.255

etc....

where 172.16.5.1 and 172.16.5.2 are servers in your DMZ.

If the public IP address in the above static commands is your ASA outside interface substitute the "public IP" with "interface" eg.

static (inside,outside) tcp interface 23 172.16.5.1 23 netmask 255.255.255.255

Obviously you then need to configure access-lists etc. to allow the access.

HTH

Jon

0 Helpful

cmadiam82
Level 1
Level 1
In response to Jon Marshall

‎10-19-2007 05:27 PM

Tnx Jon. I will give it a try.

0 Helpful
Customers Also Viewed These Support Documents