From: Shahid Ansari (shahid1357@gmail.com)
Date: Thu Mar 05 2009 - 13:24:02 ARST
Hi Sec.Guys,
I have question regarding NAT . As I am configuring inside NAT on ASA ,did
NATTing works on ASA if REAL IP is one or Two hop Away from ASA.
and if it works how ASA know to reach that host ? by static routes.
If I do double NAT ,I can face problems with Streamline applications(Voice)
,what about Bypass NAT ?
Below What is the best place to creat DMZs for external Web servers on ASA
or On Juniper.
Design 1
Internet Router-----ASA----Juniper----Internal Servers(Email Server)
!
!
DMZ Web servers,Ex.Email server
Internet router , ASA outside has public Block
OR
Design 2
Internet Router-----ASA----Juniper----Internal Servers(Email Server)
!
!
DMZ Web servers,Ex.Email server
Any help or clue is really appreciable.....
Thanks
Shahid Ansari
Blogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Mon Apr 06 2009 - 06:44:04 ART