03-16-2004 02:10 PM - edited 03-02-2019 02:19 PM
Can I replace first firewall and first router (from internet side) with one cisco PIX 515 firewall?
In that case firewall will be connected direct to www, mail, ftp serwer, router for workgroup and server with IPSec for wi-fi
http://www.cisco.com/en/US/products...4094/index.html
It have NAT, DHCPD and can operate on 6 10/100 Fast Ethernet interfaces.
Is this possible/good solution ??
03-17-2004 01:23 PM
you can replace the firewall. Pixes do not route.
03-19-2004 07:47 AM
Not possible/ not good (actually I don´t know if it´s possible-depends on your routing). I DO know that PIX´s are not routers and cannot route so it´s not a good idea. I also know that the Cisco recommended solution (SAFE) is to have an external router as your permiter (first-line) security.
Basically, plug router into e0 interface on the PIX and the other end into ISP. PIX default route sends all traffic to router ethernet interface. Much easier this way!
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: