Note
Basic Network Layout for a DMZ Configuration
78-18003-02
Scenario: DMZ Configuration
Cisco ASA 5505 DMZ configurations are possible only with the Security Plus
license.
A demilitarized zone (DMZ) is a separate network located in the neutral zone
between a private (inside) network and a public (outside) network.
This chapter includes the following sections:
Basic Network Layout for a DMZ Configuration, page 6-1
•
•
Example DMZ Network Topology, page 6-2
Configuring the Security Appliance for a DMZ Deployment, page 6-10
•
What to Do Next, page 6-28
•
The network topology in Figure 6-1 is typical of most DMZ implementations of
the adaptive security appliance. In this deployment, the web server is on the
DMZ interface, and HTTP clients from both the inside and outside networks can
access the web server securely.
C H A P T E R
ASA 5505 Getting Started Guide
6
6-1