Configuration Wizards
Using the DMZ Wizard to Configure DMZ Settings
Cisco ISA500 Series Integrated Security Appliances Administration Guide 73
2
STEP 10 In the Basic Setting tab, enter the following information:
•Name: Enter the name for the DMZ.
•IP: Enter the subnet IP address for the DMZ.
•Netmask: Enter the subnet mask for the DMZ.
•Spanning Tree: Check this box to enable the Spanning Tree feature to
determine if there are loops in the network topology.
•Port: Choose a configurable port from the Port list and add it to the Member
list. The selected configurable port is set as a DMZ por t in the Access mode.
•Zone: Choose the default DMZ zone or a custom DMZ zone to which the
DMZ is mapped.
STEP 11 In the DHCP Pool Settings tab, choos e the DHCP mode from the DHCP Mode
drop-down list.
•Disable: Choose this option if the computers on the DMZ are configured with
static IP addresses or are configured to use another DHCP server.
•DHCP Server: Allows the security appliance to act as a DHCP server and
assigns IP addresses to all devices that are connected to the DMZ. Any new
DHCP client joining the DMZ is assigned an IP address of the DHCP pool.
•DHCP Relay: Allows the security appliance to use a DHCP Relay. If you
choose DHCP Relay, enter the IP address of the remote DHCP server in the
Relay IP field.
STEP 12 If you choose DHCP Server as the DHCP mode, enter t he follow ing info rmatio n:
•Start IP: Enter the starting IP address of the DHCP pool.
•End IP: Enter the ending IP address of the DHCP pool.
NOTE: The Start IP address and End IP address should be in the same
subnet with the DMZ IP address.
•Lease Time: Enter the maximum connection time that a dynamic IP address
is “leased” to a network user. When the time elapses, the user is
automatically assigned a new dynamic IP address.
•DNS1: Enter the IP address of the primary DNS server.
•DNS2: Optionally, enter the IP address of a secondary DNS server.
•WINS1: Optionally, enter the IP address of the primary WINS server.