internal hosts to dmz
Young Grasshopper
Member Posts: 51 ■■□□□□□□□□
hi everyone
we have a 5510 with an inside(100) and outside interface(0). i just created a third interface which will be a DMZ(50) and added a webserver to it. I can rdp into the web server fine from my desktop, however when i try to ping or rdp into it from one of the internal hosts i get nothing. i should be able to get to it right if it has a lowe security level? im sure theres soemthing im missing...
thanks
we have a 5510 with an inside(100) and outside interface(0). i just created a third interface which will be a DMZ(50) and added a webserver to it. I can rdp into the web server fine from my desktop, however when i try to ping or rdp into it from one of the internal hosts i get nothing. i should be able to get to it right if it has a lowe security level? im sure theres soemthing im missing...
thanks
Comments
-
Young Grasshopper
Member Posts: 51 ■■□□□□□□□□
one of my co workers was able to answer this for me. he said i would need to create something like access-group dmz_access_in in interface dmz and create access-lists for it. i think thats right, is there anything else im missing?
-
shednik
Member Posts: 2,005
do you have icmp inspection turned on? Otherwise an acl could be used to allow it.