how did you make the firewall icon in pacet tracer ?

Just started learning about firewalls. I understand the LAN is security 100 and the DMZ is 50. What I dont get is you put the ACL of ip any any on the DMZ interface ? This will allow the traffic inbound, but will the interface of the LAN being 100 then block it. ( Or are we saying that the security 100 or 50 is for inbound traffic only ) If it is , then traffic inbound from the internet is set at security 0, so all traffic can enter...araghhhh someone help before my head explodes.....

@czbdm0 The ACL was applied to the DMZ interface in the inbound direction. So traffic coming into the DMZ interface has to be allowed by the DMZ ACL. It doesn't matter what interface the traffic is going to exit as we don't have ACLs appied in the outbound direction on any other interface. You can apply ACLs in the outbound direction but we didn't do that here. The DMZ ACL overrides the security level. So if traffic coming into the ASA on the DMZ interface matches the ACL, it will be allowed.

Thank you for posting these videos; they really help a lot!! By the way, may I know what software you use in the video? Is it the Cisco packet tracer?

@aquacavalier hmmmm i don't think so bro :D

thank you



can you do please: side to side VPN with radius authentication.

or just client vpn from cmmand line - and some explonation

just add:

to make this lab work - first you have to setup few static routes

and what i did: replaced swichtes with proper swichtes from gns3 or stay with routers and play with subnet mask

thanks for the lessions

Thanks for the feed back. I'm glad they're helping.