need your advice

Unanswered Question
Dec 6th, 2007


I have PIX 525 and want to divide inside interface into 3 sabinterfaces (VLANs)... Is it possable to filter internet traffic (sach as: http, xxx, traffic shapping, TCP connections, FTP and etc ....) through the PIX >>> and if it possable how do it ? My frined told me that, config WIN-PORXY or something like that and filter traffic through it ? Just do 3 subinterfaces in PIX, and open TCP, IP, UDP ports... (I think it looks pritty bed...) Need your advice what is the most way to resolve my problem ?

Regards, Batumi3

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
husycisco Fri, 12/07/2007 - 01:37

Yes you can creae 3 subinterfaces and do VLAN taggigng. But PIX is not a filter device, it is a firewall. For filtering purposes, you need something that works on application layer, Websense software for example. PIX can integrate with Websense. AFAIK, PIX does not do filtering. All you can do is blocking outbound ports.

batumibatumi Fri, 12/07/2007 - 02:45

I'm downloading WEBSENS now... there was written that i can filter HTTP, FTP, or HTTPS ... ??? Is it true ??? Do you recommend me to use Proxy server and not using WEBSENSE SERVER ??? What do you do recommend me to do in this case ? Do you know recommended configuration for PIX ... ? pleas be kind and give me the link of course if you have ! :) tnx, IN ADVANE

Regards, Batumi3

batumibatumi Fri, 12/07/2007 - 07:29

Great tnx... it was very kind to help me from your side...

Regards, Batumi3

husycisco Fri, 12/07/2007 - 12:10

You are welcome Batumi. Please dont forget to rate helpful post :)


This Discussion