|
Posted by Brad on November 21, 2007, 4:08 pm
Scenario
Cisco 877w with Advanced IP Services IOS and SDM 2.4.1. I need to
setup a DMZ on this device but my question is should I NAT the
addresses in the DMZ or use public ips? My plan is to make the DMZ a
separate VLAN (actually HAVE to on the 877w since they don't really
support a true DMZ) but by NATting the DMZ address space I have only
the choice of a NAT "inside" or NAT "outside" via SDM. I am assuming
that NATing them as "inside" just means that they are addresses that
need to be translated, NOT that they are in an "inside" security zone
like my main VLAN is.
The ultimate goal is to have my Edge Transport server for Exchange
2007 in my DMZ and have the other Exchange services NATted to the
"inside" or trusted network.
Thanks
Brad
| 
Yahoo! 
Google 
Windows Live 
del.icio.us 
digg 
Netscape 
XML site map