Cisco Systems ASA 5500 Benutzerhandbuch
Chapter 6 Scenario: DMZ Configuration
Configuring the Security Appliance for a DMZ Deployment
6-14
Cisco ASA 5500 Series Adaptive Security Appliance Getting Started Guide
78-17611-01
c.
Click OK to add the Dynamic NAT Rule and return to the Configuration >
NAT window.
NAT window.
Review the configuration screen to verify that the translation rule appears as you
expected.
expected.
Note
When you click OK to create this rule, notice that there are actually two
translation rules created:
translation rules created:
•
A translation rule between the inside and DMZ interfaces to be used when
inside clients communicate with the DMZ web server.
inside clients communicate with the DMZ web server.
•
A translation rule between the inside and outside interfaces to be used when
inside clients communicate with the Internet.
inside clients communicate with the Internet.
ASDM is able to create both rules because the addresses to be used for translation
are both in the same IP pool.
are both in the same IP pool.