Asa Firewall: Konfigurasi Static Nat - DMZ

UpdatedMarch 11, 2024

•1 min read

I’m a passionate network system and security enthusiast with a knack for solving complex technical challenges. With extensive experience in troubleshooting and optimizing network infrastructures, I’m dedicated to ensuring systems run smoothly and securely. Through this blog, I share insights, tips, and innovative solutions to help you tackle and overcome network and security issues. Feel free to connect with me on LinkedIn or reach out via email at asrul@solusiber.com.

Melanjutkan artikel sebelumnya, kali ini saya akan melakukan konfigurasi static nat/dmz asa firewall. Untuk topologi yang saya gunakan masih sama dengan artikel sebelumnya.

Konfigurasi Static NAT/DMZ

Saya akan membuat static nat untuk host Server0 192.168.1.2 supaya bisa ping dan diakses port 80/443 dari outside network menggunakan address 103.111.248.254. Buat object network dan buat access list untuk mengizinkan packet tcp 80/443 dan icmp.

FW1(config)#object network dmz-outside
FW1(config-network-object)#host 192.168.1.2 
FW1(config-network-object)#nat (dmz,outside) static 103.111.248.254 

FW1(config)#access-list outside-dmz permit tcp any host 192.168.1.2 eq 80
FW1(config)#access-list outside-dmz permit tcp any host 192.168.1.2 eq 443
FW1(config)#access-list outside-dmz permit icmp any host 192.168.1.2 
FW1(config)#access-group outside-dmz in interface outside

Uji Coba

Lakukan ping atau akses web server dari Laptop0 ke address 103.111.248.254.

#cisco #cisco-packet-tracer #asa-firewall

15 views

Comments

Join the discussion

No comments yet. Be the first to comment.

More from this blog

Atomic Red Team Installation & Demo in VM

Kali ini kita akan berkenalan dengan yang namanya ART, jadi apa itu ART? ATOMIC RED TEAM adalah sebuah library open source untuk melakukan uji keamanan yang dipetakan berdasarkan framework MITRE ATT&CK. MITRE ATT&CK adalah sebuah framework yang digu...

Dec 15, 20242 min read139

Teaching Experience in Vocational Schools

Hi, in this article I will share my experience teaching vocational school students (computer and network engineering) at the IDN Academy Goes to School event. There are 3 schools that I taught. 1. SMK Prestasi Alfatah, Kabupaten Mojokerto. 2. SMK ...

Nov 3, 20241 min read17

AMD Radeon Graphics: Installation on Ubuntu 22.04 LTS

I have an AMD Thinkpad T14 Gen 1 device, when I use ubuntu by default the graphics driver used is renoir. I want to install the default graphics driver from amd. Downloading and Installing Linux Drivers for AMD Radeon Graphics cd /tmp wget https://re...

Aug 24, 20241 min read23

VMware Workstation Pro 17.5.2: Installation on Ubuntu 22.04 LTS

Downloading VMware Workstation Pro Create an account and login to the Broadcom Support Portal, then download VMware Workstation Pro 17.5.2. Dependency Installation sudo apt update sudo apt install -y build-essential dkms gcc-12 make perl linux-header...

Aug 24, 20241 min read153

OpenSSH: Instalasi Dan Konfigurasi Dasar

Pada artikel kali ini saya akan melakukan instalasi dan konfigurasi dasar openssh server di debian 12. Topologi Instalasi root@srv1:~# apt install openssh-server Konfigurasi Dasar Edit file /etc/ssh/sshd_config. Secara default ssh menggunakan port ...

Jul 1, 20241 min read6

SOLUSIBER | BLOG

9 posts

Command Palette

Konfigurasi Static NAT/DMZ

Uji Coba

Comments

More from this blog