09-20-2015 10:27 AM
Sorry, kind of new to what I am trying to, anything outside basic stuff. I have a 620. I have two VLANs 1010,1011, 1012. 1012 I want to make a DMZ, and therefor should not be able to communicate to any other vlan. So a couple of questions
1. How do I make a policy to do the above?
2. How do I put a policy in place to bloxk everything to the DMZ from the outside, except to make a direct NAT/port translation?
3. How can I make a policy that will allow if needed a port/ip exception from the 1012 to the 1011 network?