8-5
Cisco ASA 5500 Series Getting Started Guide
78-19186-01
Chapter 8 Scenario: DMZ Configuration
Example DMZ Network Topology
Figure 8-3 An Outside User Visits the DMZ Web Server
When a user on the Internet requests an HTTP page from the DMZ web server,
traffic flows through the adaptive security appliance as follows:
1. A user on the outside network requests a web page from the DMZ web server
using the public IP address of the adaptive security appliance
(209.165.200.225, the IP address of the outside interface).
2. The adaptive security appliance receives the packet and, because it is a new
session, verifies that the packet is allowed.
User
192.168.1.2
Inside
DMZ
191800
www.example.com
Internet
Public IP Address
209.165.200.225
(outside interface)
Inside interface
192.168.1.1
DMZ interface
10.30.30.1
Web Server
Private IP Address: 10.30.30.30
Public IP Address: 209.165.200.225
Destination Address Translation
209.165.200.225 10.30.30.30
To Next Page
Loading...
Need help?
General
