Firewall Basic Configuration in Packet Tracer-1

We will do a very basic configuration, but you need to understand the whole logical process process.

 

From the internet (outside network) can not get into the inside (our network)

From inside (our network) we can go anywhere

The next thing we will do is to go to packet tracer

We will set it up with an asa 5505 firewall and a 2 computers.

We will assign an static IP address

We will check the configuration of the ASA firewall with Show running-config command

On the firewall we will see an interesting thing:

• It was created automatically a VlAN 1 by default with security level 100, name inside automatically created as well and IP address 192.168.1.1

• It was also created a VLAN2 , named Outside  automatically with security level 0 and DHCP

Now we need to understand the superior security level can get into inferior level but not  the other way

Because of that , computers in VLAN1(security level 100)can reach VLAN2 , but VLAN 2 (security level 0) can NOT reach VLAN1 

Now we are going to follow a process on the firewall

1. Assign an IP address to each vlan ( 1 and 2)
2. Turning them up 
3. Verification (ping process)

Process 1: Assigning an IP address

Process 2: Assigning an interface to Vlan and Turning them On

Vlan 1

Now we will check with show running-config

We now see that both vlans have now their ip assigned 

Process 3: verification

We will ping

Now we must remember our security level

If we try to ping  to the other computer, it wont happens

To do that we need to apply the politics of information traffic

Now we will ping it again:

and now we will ping the computer from outside

Once we do this exercise we will see that we can ping from PC0to PC1.but we wont be able to ping from PC1to PC0 because of the lower security level 

The exercise is done..I hope you enjoy it..And if you did, please click like