I am new to the PIX world. I have a customer with a W2K/SBE(small business edition) server that hosts ALL services on a single box. I am concerned with the fact the the server acts as its own router and has a public address assigned to one of the two NICs. The ISP assigned the customer a static address on a DSL connected subnet mask of 255.255.255.252 which hosts only two addresses. The customer is a small business with less than 10 users. Website, Exchange and OWA need to be supported. I'd like to also configure VPN access for home use.
I have purchased a Cisco 501(v6.1) with the intent of placing it between the DSL modem and the Server. Assign the public address to the outside port on the 501 and a private ip range to the inside. Disable one of the NICs on server and disable the routing and ISA services. Continue to use a non-public ip range on inside.
It is possible to create a safe solution for this situation?
BTW, I have reviewed many of the Cisco PIX docs and purchased the firewall book from them. I also have a copy of Yizhar's utility. I feel a little uncertain at this point.
Comments please, Phil
I have purchased a Cisco 501(v6.1) with the intent of placing it between the DSL modem and the Server. Assign the public address to the outside port on the 501 and a private ip range to the inside. Disable one of the NICs on server and disable the routing and ISA services. Continue to use a non-public ip range on inside.
It is possible to create a safe solution for this situation?
BTW, I have reviewed many of the Cisco PIX docs and purchased the firewall book from them. I also have a copy of Yizhar's utility. I feel a little uncertain at this point.
Comments please, Phil