cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
204
Views
0
Helpful
1
Replies

PIX F/W design

spremkumar
Level 9
Level 9

hi

i need a very basic info of placing a PIX in a small N/W.

we hve a LL from ISP terminating in our router and we hve a small group of pcs(in private subnet).

right now i hve connected my routers eth,pix public eth in a seperate switch.

private eth port of pix is connected to a switch where my local pcs r connected.

is this topology a right one ?

can i break this and connect all (router/pix/my lan) in a single switch?

thx in adv

prem

1 Reply 1

scoclayton
Level 7
Level 7

Hi Prem,

Your design sounds fine and your idea to plug this into one switch should also be fine. I would suggest creating 2 VLAN's on your switch for the "outside" and "inside" connections to increase the security level a bit. With this design in place, your only real concern (physically) is VLAN hopping which is more theoretical than practical. If VLAN hopping is a security concern of yours, physically seperating the "outside" and "inside" switches is necessary. Hope this helps.

Scott

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: