Hi
I am a admin for a little network.
And i have a little problem that i want some help with.
First a little description of our network how it looks today.
The network is connected through a Pix 515E to a bigger network in a other company.
The pix 515E have 3 network interfaces and now it has one free.
The only traffic that may pass from the bigger network to us is some intern comunications.
All our traffic to the internet goes throug the firewall to a proxy on the bigger network and this only accept port 80,443.
We have no possibilties to access other ports on internet and the internet can not reach us.
We also have a isdn modem that is connected to a server with exchange that collects email from a dial up smtp.
The security is medium high.
Now i want to connect a Cisco 831 router and a Adsl modem so we can collect the email through here and we also have some external workers that want to connect through vpn.
I want to connect the Cisco 831 to the free interface on the Pix 515E.
Now to the problem.
Can i do like this ?
I want to use the Cisco 831 so i don't need to make to much reconfigurations in the pix 515e and i want high security , the Cisco 831 should take the first hit.
The Cisco 831 may not pass any traffic in or out that i don't accept.
I also only going to make all routes myself that are needed.
I am little unsure how the Cisco 831 vpn works and i am also not very good in cisco scripts.
In the discription on Ciscos site they talk about something that i don't can use the pat (NAT) then i use the vpn functionality in the router.
Is this true ?
Does this mean that i don't can forward ports and use them at the same time as the vpn.
I also wounder , can i forward the IPSEC to the pix 515E ?
I have read that this can be a big problem because of the nat.
Some cisco scripts for the 831 that i could use would be very appreciated.
I am a admin for a little network.
And i have a little problem that i want some help with.
First a little description of our network how it looks today.
The network is connected through a Pix 515E to a bigger network in a other company.
The pix 515E have 3 network interfaces and now it has one free.
The only traffic that may pass from the bigger network to us is some intern comunications.
All our traffic to the internet goes throug the firewall to a proxy on the bigger network and this only accept port 80,443.
We have no possibilties to access other ports on internet and the internet can not reach us.
We also have a isdn modem that is connected to a server with exchange that collects email from a dial up smtp.
The security is medium high.
Now i want to connect a Cisco 831 router and a Adsl modem so we can collect the email through here and we also have some external workers that want to connect through vpn.
I want to connect the Cisco 831 to the free interface on the Pix 515E.
Now to the problem.
Can i do like this ?
I want to use the Cisco 831 so i don't need to make to much reconfigurations in the pix 515e and i want high security , the Cisco 831 should take the first hit.
The Cisco 831 may not pass any traffic in or out that i don't accept.
I also only going to make all routes myself that are needed.
I am little unsure how the Cisco 831 vpn works and i am also not very good in cisco scripts.
In the discription on Ciscos site they talk about something that i don't can use the pat (NAT) then i use the vpn functionality in the router.
Is this true ?
Does this mean that i don't can forward ports and use them at the same time as the vpn.
I also wounder , can i forward the IPSEC to the pix 515E ?
I have read that this can be a big problem because of the nat.
Some cisco scripts for the 831 that i could use would be very appreciated.