I have a Verizon FIOS internet connection and one of their wireless broadband routers, and it's a completely basic setup...their router does DHCP and firewalling, and the connection has a dynamic address. I'd like to put the PIX 501 behind the Verizon router as one of its clients, and have the PIX do VPN's to other PIX 501's at other locations, such that my entire network has access to the remote networks.
Can this be done, and if so, could anyone post some suggested configurations (how to address the inside and outside ports, static routes that might be needed somewhere, etc)?
Thanks for any help.
When my FiOS was installed, I had already requested that it be installed on the Ethernet cable. Don't know that they have to do anything to allow you to switch over from Coax to Ethernet.
The easiest way to test it would be to find the media converter (follow the coax from your FiOS router back to the demarc and there should be a box there that has a Coax port, a few Phone jacks, and an Ethernet port). If you disconnect the Coax and plug a laptop into the Ethernet port, see if your laptop pulls a public IP address. If it does, then you just have to run an Ethernet cable to your PIX501 and you should be all set.
Just note that Verizon, depending on your area, does make DHCP assignments reserved. This means that you may have to call Verizon and have them release the previous DHCP-MAC address assignment. I had this happen just recently. They have to release the assignment and then your PIX will pull a new IP and they will reserve your new IP-MAC address assignment. They do this to speed up the connection time from a cold start on the router.
Basically they are doing MAC address filtering, but via a sticky ARP where they clear the entry and then the next device that connects it records its MAC address and then only that device is allowed to connect to that leg of the cable. So, there's a little work you may have to do, but the hardest part would be sitting on hold waiting for a tech, if you have to call in to Verizon.