Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Firewall best practices

I have the setup in the attached drawing.

The 871 is for VPN connections only. The firewall is enabled and only the IPSEC traffic is allowed in on that router.

I want to configure a failover to the other ISP by using object tracking.

I will need to add an address from the Sprint subnet to do this.

I have a couple of questions about the set up.

Should I be doing something to increase the security of the set up either way (with or without the changes)?

Will the changes I want to make have any affect negatively on security?

Thanks for any input

CreatePlease login to create content