Configuring ASA for Network Segmentation

[acabezas2014]

Have a Cisco ASA5505H and trying to figure out what is the best configuration for the following setup on the attach diagram. So that the 3 PC's sit behind the firewall and only have access to certain resources on the network. What are the best options for this kind of setup on these ASA's. Should a port-channel be configured and then PC's connected to ports 2,3,4 and then port 1 to a LAN IP on the network? Which will then NAT all internal interfaces to Outside interface? Thanks

 

[acabezas2014]

Trying to setup a Cisco ASA 5506 for the work flow on the attached image. If anyone could please recommend the best way to setup this ASA to Deny all traffic from LAN PC to Presstek PCs with the exception of port 445 for SMB file transfer. The Presstek computers will have static IP's on the same LAN subnet but they will be connected to the ASA ports and not LAN switch. If you need further info or need me to clarify certain things please let me know. Thanks