Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
New Member

Two-Tier Firewall Config

We want to setup a Data Center Network for core banking with all the application and Database servers.For the same we are planning to design a Two-Tier firewall network architecture. First Tier firewall (Cisco PIX in failover mode) will have Web servers in DMZ as front end application server. Second Tier firewall (PIX firewall Failover mode) will have the Application and database servers in DMZ as back end servers.

Flow of data will be such that any user logging from internet will access web servers at the first level, get authenticated and web servers will in turn talk to the internal application servers for any data request.

Is the above design OK….

Pls find attached topology diagram….

Also provide me with the sample PIX config for the above Two-Tier firewall architecture implementaion of application and database servers.


IP Scheme is as listed below.

Lan IP = -

Internet Firewall DMZ Network (Tier-1) =

Internet Firewall Internal Network (Tier-1) =

Intranet Firewall External Network (Tier-2) =

Intranet Firewall DMZ Network (Tier-2) =

PiX Firewall Internal Network (Tier-2) =


CreatePlease to create content