I apologize for the seemingly easy question. I am a systems guy who has been put in the position of network guy since the real network guy left the company.
I have several coworkers that want to remove a firewall from a location and simply use the Cisco 1601 that is in place to handle their perimeter security. While I know that taking the firewall away is a bad idea, I can't really elaborate any more because I don't know that much about it. I know that a router doesn't firewall and a firewall doesn't route, but that doesn't seem to work on these guys.
Can anyone point me to a good resource so I can throw it at my coworkers and show them that removing the firewall is bad?
Firstly, you are correct in that having a firewall is right to protect your network rather then using a router to do a firewall job. The question is very generic in that using a router as a firewall is known as a 'poor mans firewall' a firewall is built for exactly what it says - protecting your internal network from the outside but a router is made for routing traffic for a network NOT for being used as a firewall - but you can use it to do that. It really depends on how secure you want your network to be, if you want a real security then use a firewall like PIX series.
Thanks, Jay. It helps out some. I managed to find a few other things out on the net as well, so hopefully I'll be able to convince them otherwise. Either way, there will likely be a time in the future when I can say "I told you so!"
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :