internal hosts to dmz

Young GrasshopperYoung Grasshopper Posts: 51Member ■■□□□□□□□□
hi everyone


we have a 5510 with an inside(100) and outside interface(0). i just created a third interface which will be a DMZ(50) and added a webserver to it. I can rdp into the web server fine from my desktop, however when i try to ping or rdp into it from one of the internal hosts i get nothing. i should be able to get to it right if it has a lowe security level? im sure theres soemthing im missing...


thanks

Comments

  • Young GrasshopperYoung Grasshopper Posts: 51Member ■■□□□□□□□□
    one of my co workers was able to answer this for me. he said i would need to create something like access-group dmz_access_in in interface dmz and create access-lists for it. i think thats right, is there anything else im missing?
  • shednikshednik Posts: 2,005Member
    do you have icmp inspection turned on? Otherwise an acl could be used to allow it.
Sign In or Register to comment.