Cisco SA520-K9 Administration Guide - Page 65
Networking, Configuring a Firewall Rule for, Inbound Traffic, Reserved IPs,
UPC - 882658266744
View all Cisco SA520-K9 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 65 highlights
Networking Configuring a DMZ 2 • Starting IP Address and Ending IP Address: Enter the range of addresses in the IP address pool for this security appliance. Any new DHCP client that joins the DMZ is assigned an IP address in this range. • Primary DNS Server and Secondary DNS Server (Optional): Enter the IP address of the primary DNS server for the DMZ. Optionally, enter the IP address of a secondary DNS server. • Primary Tftp Server and Secondary Tftp Server (Optional): Enter the IP address of the primary and secondary Tftp servers for the DMZ • WINS Server (Optional): Enter the IP address for the WINS server or, if present in your network, the Windows NetBios server. • Lease Time: Enter the maximum connection time in hours that a dynamic IP address is "leased" to a network user. When the time elapses, the user is automatically assigned a new dynamic IP address. The default is 24 hours. • Relay Gateway: If you chose DHCP Relay as the DHCP mode, enter the IP address of the relay gateway. STEP 5 In the DMZ Proxies section, check the box to allow the DMZ to act as a proxy for all DNS requests and to communicate with the DNS servers of the ISP. When this feature is disabled, all DHCP clients on the DMZ receive the DNS IP addresses of the ISP. STEP 6 Click Apply to save your settings. NOTE Next steps: • If you are using the Getting Started (Advanced) page, click Getting Started > Advanced to continue with the list of configuration tasks. • Required: You must configure a firewall rule to allow inbound traffic to access your DMZ. Also use the firewall rule to specify a public IP address for a server on your DMZ, if applicable. To get started, click Firewall on the menu bar. For more information, see Configuring a Firewall Rule for Inbound Traffic, page 110. • If you want to reserve certain IP addresses for specified devices, click Optional Port > DMZ Reserved IPs. For more information, see DMZ Reserved IPs, page 66. Cisco SA500 Series Security Appliances Administration Guide 65