1) The customer would like to add wireless support to the LAN for mobile users from satellite offices and local offices. so which is the best Wireless box from cisco with scalaibilty for coming 5 years.
2) Replace the BT rotuer with a cisco rotuer ( not sure which is the best )
3) Buy a new 24 port switch which would replace the current HP Procurve for good.
Key elements :
The wireless security is a big issue for all of us so considering the existing hardware + the ones which we will be replacing what would be the best way to integrate it all i.e. should we use the PIX additional card to secure it further ? wireless in a different lana dn than route it back in the network in some way.
The key thing we need to keep in mind is the site has a pool of 5 / 7 ip address for different purporse out of which
1) one resides static on the BT rotuer WAN int
2) PIX WAN int ( outsdie )
3) additional two are mapped on the pix to internal servers.
So we dont want to create another lan with internal private ip addressing between the BT rotuer ( future cisco ) as mentioned above the pix outside int also has a live static ip from BT.
If someone can provide some explaination on the design will be great and some pdf links to read in more detail.
i am having trouble with your questions but i think this is what you want.
an 871 router will be at the low end of what you want, the procurve should still work fine for what you are doin. the next step up would be the 1800 series and then the 2800 series if you want to start gettting up there. i might not understand your question fully though
One question about the switch i think is answered where I need to go with it.
As for the ADSL router 871 the question is the existing BT router died 2 days back and so BT have said it is no longer under cover with them so to get them up and running imediately they bought a Netgear 834 ADSL rotuer now the PIX does not work with this Netgear box.
----netgear box with ip 220.127.116.11 ( outside )
----netgear box lan ip 192.168.0.1 ( inside )
-----PIX ( outside ) 18.104.22.168
-----PIX ( inside ) 10.10.10.254
now users from the 10 subnet cannot go out as the pix wan and netgear lan are not on the same and they dont like each other....
I am not sure hwo the BT rotuer was configured and the features of it as well as BT never provided access to this box.
To get this situation working for now we changed the 192.168.0.1 range to the 10.10. range and now it works and we have switched off the pix temporarily....
SO we wanted to make sure that the cisco router get for ADSL should enable us to have the old configuration which is a static (live) ip on pix (outside) and also static (live) ip on the cisco ADSL (outside)
as we intended to do all the firewalling on the pix and not the ADSL router....
As for the wirless part is concerned we were looking to buy a cisco wireless AP and make sure we can use the pix to add additional layer of security in some way if not we will only rely on WEP which can be hacked easily...
So which AP to buy
What design considerations should we take into account.
Your netgear was doing nat on everything sitting behind it, which is why your pix was not working (you had a static IP on the outside for which your netgear had no routing information for). If you wanted to save money, you could probably get a cisco 1710 and configure it for DHCP (assuming the provider hands an ethernet connection) or PPPoE or PPPoA (depending on what your provider hands you. Then your inside interface on your router would be in the same subnet as the outside interface of your pix (with nat occuring on your pix). From there, you can create separate physical interfaces (assuming you have spare nics in your pix) or logical subinterfaces and use vlans on your switch to chop your network up how you want it. Hope this helps.
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...