Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Westi on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Rookie trying to configure a PIX 515E for the 1st time.

Status
Not open for further replies.
tdoma

tdoma

IS-IT--Management
Aug 13, 2003
94
US
I am new to this, so please be gentle.
I am trying to figure out the best way to implement a PIX firewall, with a remote access solution in the following scenerio. I have an office with about about 50 users, who are connected to the internet with DSL, using a netopia cable modem, and then there is a Linksys router that is in turn connected a couple of Cisco swithes (29xx). I only have 1 public IP address. Currently the Linksys router is configured to let specified traffic through the internal network. The traffic that is being let through is mainly http and smtp to the mail server. My 1st question is will the Linksys router work with the PIX? If it will, should I have the external interface of the PIX connect to the Linksys router, i.e should I have the following connection, the internet-netopia modem-linksys router-pix-internal network? On the internal network, I have a Windows 2000 network, which consists of a file/print server, email server (OWA) and an internal DNS server. Given the above scenerio, which authentication method would be recommended? The Pix 515E has an integrated VPN conncetrator, what would be the best way to implement it given the scenerio above?
I know I am asking a lot, but I would greatly appreciate any help I can get.
Thank you in advance.
 
Sort by date Sort by votes
If I were in your shoes, I would configure it this way.

Internet -- netopia modem -- pix -- internal network

You don't need the PIX and the Linksys router. They are both pretty much capable of doing the same things. As far as the VPN goes, I would use the Cisco client to connect to the PIX and then use Radius authentication against my internal W2K network.

I hope that this helps a little.
 
Upvote 0 Downvote
I agree with havanajoe - If you really wanted to use you linksys router the you could stick it on the lan side of your network. There is not a whole lot of reason to do this. I do it at home for my wireless card. My config is as follows:

Modem --->Pix[Outside(dhcp)] || Pix [Inside(10.10.100.100)}--->Linksys Wireless [Outside (10.10.100.101)] || Linksys Wireless [Inside 192.168.1.1]

Hope this helps
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
779
Sameer258
Sameer258
Sparrow4
  • Locked
  • Question
Configure Avaya IPO R11 / VM Pro + Office365 or Exchange for voicemail to email
Replies
2
Views
648
Johnkite
Johnkite
XLNTech1
  • Locked
  • Question
iptables port forwarding
Replies
0
Views
582
XLNTech1
XLNTech1
Tommy_T
  • Locked
  • Question
Sonic wall - Have an issue remotely connectioning VNC and SMB (and AFP) to one of the 2 ISP circuits
Replies
1
Views
580
nnaarrnn
nnaarrnn
WhosYourDiffie
  • Locked
  • Question
Cisco ASA 5506 VPN for Avaya Phones
Replies
0
Views
176
WhosYourDiffie
WhosYourDiffie

Part and Inventory Search

Sponsor

Back
Top