Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX 501 Port Segmentation for teleworkers?

We're evaluating PIX vs. Netscreen & SonicWALL for teleworkers. Both

SonicWALL and Netscreen offer a port segmentation feature that allows the

corporate VPN to be extended to only specific ports. This means that Mom or

Dad can be on the company VPN, but anyone else on that home network (kids)

won't be able to access the corporate VPN. Does Cisco offer such a

feature or VLAN functionality, or do we have to use a Netscreen or SonicWALL

firewall for home users?

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: PIX 501 Port Segmentation for teleworkers?

Sure, the Pix can offer similar functionality - but even better.

How about authenticating each user as they attempt to cross the tunnel?

User Level Authentication is a feature in 6.3 Pix OS.

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/63rnotes/pixrn63.htm#67805

This is more secure then simply letting unauthorized users simply move from one port to another on the Netscreen or Sonicwall.

peter

2 REPLIES
Cisco Employee

Re: PIX 501 Port Segmentation for teleworkers?

Sure, the Pix can offer similar functionality - but even better.

How about authenticating each user as they attempt to cross the tunnel?

User Level Authentication is a feature in 6.3 Pix OS.

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/63rnotes/pixrn63.htm#67805

This is more secure then simply letting unauthorized users simply move from one port to another on the Netscreen or Sonicwall.

peter

New Member

Re: PIX 501 Port Segmentation for teleworkers?

Ah, yes. this is much better. Thank you Sensei.

89
Views
0
Helpful
2
Replies
CreatePlease login to create content