Ask Computer Networking Questions and Get Answers ASAP
Hello, my name is Michael. I can help you with your question, but we need to focus on one question. Please let me know which question you want to work on and I'll be happy to help.
The first thing I would do, thought, to make this a little bit more simple, is to use static addresses where you can, at least during the setup.
That would be a typical scenario. Accessing outside the domain to a home system would be extremely uncommon. What are you trying to access from the domain?
Hi. My name is ***** ***** I can help you with part of your questions. I not familiar with the VPN part but can help with the port security.
It seems to me the simplest way to setup up the security you want is setting proper security levels on your interfaces. Are you familiar with how security levels work on the ASA? The jist of it is that traffic flows freely from higher security levels to lower but NOT vice versa. Security levels can be set from 0 to 100. So for example, you'd set your home network interface (port 3) to 100, your office interface (port 2) to 50, and your Internet connection (port 0) to 0. What this will do is allow your home access to both office and Internet, your office to Internet (because 50 is greater than 0) but NOT office to home (because 50 is less than 100), and nothing inbound from Internet (because 0 is less than both 50 and 100).
Make sense? Please let me know if you have any questions and how it goes.
I'm curious if you were able to try my suggestions and if it helped get things going? Please let me know.
Thanks for the update. Yes, the second you add a access list, security levels are null and void on that interface. But just to be clear, when using security levels, traffic flows unrestricted from higher to lower.
I'm glad VPN is working for you. I need to learn how to set that up for myself. ;)