Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

ASA 5500 DMZ Public Internet

Status
Not open for further replies.

grundy

Technical User
Apr 12, 2003
146
US
I need help setting up an ASA 5550. We want to use the existing DMZ or create a new WLAN VLAN for public guest access. We are going to use a WAP if we can DHCP to work on the ASA 5500 (if not we will use a wireless router)

We want the VLAN to use 10.0.0.X and route to the internet but no other VLANS. We also want to enable DHCP on this interface if possible and setup the proper routes.

I'm trying to get this setup via ADM but am having trouble. Any help would be apperciated.
 
i do not use the asdm so i cannot help you with that, but if you are willing to get into the cli you can use the following.

assuming the new vlan id will be 5, the new interface name will be dmz, and the port will be e0/2
Code:
asa(config)# int vlan 5
asa(config-if)# nameif dmz
asa(config-if)# security-level 50
asa(config-if)# ip address 10.0.0.254 255.255.255.0
asa(config-if)# exit
asa(config)# int e0/2
asa(config-if)# switchport access vlan 5
asa(config-if)# exit
asa(config)# dhcpd address 10.0.0.1-10.0.0.253 dmz
asa(config)# dhcpd dns 4.2.2.2 interface dmz
asa(config)# dhcpd enable dmz
asa(config)# nat (dmz) 1 10.0.0.0 255.255.255.0

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top