I am looking to redesign the way the routers work on my network. My plan is to have a Pix that will police the network internally and will forward any outbound traffic to a cisco 3620 with firewall and VPN which users will use to access the internet
The Cisco 3620 will sit at the boundary of the network with firewalling configured
The PIX will sit behind the Cisco 3620 as a second layer of security
My questions are:
Is my proposed design feasible with the equipment and is it a good idea to have a PIX behind a 3620 both acting as firewalls?
Secondly would I configure the PIX or the 3620 to do the VPN connections?
As you can imagine from my questions I'm pretty new to this all and would appreciate some help/guidance.