Installing a PIX firewall

[dpellegrini]

Haven't installed a firewall yet. We have NW5.1/4.11/Win2k(not in nds) mixed network. On the 5.1 server and 2k server we have ftp, http setup, and the 5.1 is communicating accross the wan to another 5.1 server for nds replication. One of the nw4.11 servers has groupwise 5.5 running. Any recommendations on how to properly setup the firewall and a dmz, so as to support all the web services we have running and nds communications with the remote server?
Thanks for the assistance in advance.


Domenick Pellegrini
dpellegrini@yahoo.com

 

[yvfwc]

Are you wanting to have your remote server on the outside of the firewall? We have 26 remote sites (each with at least 1 NW server, either 4.x or 5.1) connected via frame-relay all on private network (Intranet). Our connection to the outside world is thru 1 connection for all sites. The intranet is routed to 1 router interface connected to the PIX then to the outside router. The DMZ is a third network card in the PIX to which our outside presence is seen (a NW5.1 web server also running WebAccess. There is no NDS traffic in the public network (Internet). Is that of any help?

Cheers,

Mark ;-)

 

[dpellegrini]

Thanks for the info. As it stands we are putting the PIX on the coiporate office first. The remote office won't have a fw right away. But NDS has to sync with the corporate office. We don't have an intranet, just T-1 at both locations for internet access and a LAN on each site. My biggest concern is what ports to leave open so all the web services are still available and NDS can sync.

Domenick Pellegrini
dpellegrini@yahoo.com

 

[yvfwc]

Check on Cisco's site, I remember when first setting the PIX up finding a document of all the ports that are defined (alot of them), Novell has some predefined ones.
You might also check the forum here- Cisco Systems: PIX Firewall.

Good luck,

Mark ;-)

 

[dpellegrini]

thx

Domenick Pellegrini
dpellegrini@yahoo.com