Putting a new server behind a firewall that has no NIC's spare

Posted on 2004-04-27
Last Modified: 2013-11-16
I'm wanting to put in a new file server behind the already existing firewall (Cisco PIX 515e) which has already used up all its NIC's with a terminal server, sql server, Nortel contivity switch, linux proxy and mail server, and a win 2k server that hosts extranet web pages. my network layout looks like this:
                                                     Internal LAN
                                        |--------rest of the other servers
FOBOT----switch-----PIX firewall-----|--Contivity Switch
                                                     |        |
                                                     |-----hub-----Cisco 801 router------64k IDSN----------

This new file server going in is going to be accessed remotely via the fibre optic over the other side of the site, i want this server to be on like a VLAN so users connecting to it cant see the rest of the equipment on the network, how would i go about doing this?

thanks anthony
Question by:Anthony_E
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
LVL 79

Expert Comment

ID: 10935212
How many interfaces do you have on the PIX? 3 or 6? If only 3, then you can swap out the single NIC for a quad port (if you have unrestricted license).
Does your internal switch do VLANS? If so, your PIX inside interface does too...

Author Comment

ID: 10935632
yeah my switch does do VLANS, so does that mean all i have to do is setup a VLAN for 1 port and setup the PIX for that IP?

Author Comment

ID: 10935645
and by the looks of it it has 5 interfaces, i cant see behind the actuall PIX cos its mounted and from diagrams i have from ppl who documented it it seems to have 5 interfaces all being used.
Why Off-Site Backups Are The Only Way To Go

You are probably backing up your data—but how and where? Ransomware is on the rise and there are variants that specifically target backups. Read on to discover why off-site is the way to go.


Author Comment

ID: 10935648
sorry its 6 not 5 must have typoed twice
LVL 79

Accepted Solution

lrmoore earned 125 total points
ID: 10938011
Are all interfaces already in use? If you have 4 different DMZ's why can't you just add this server to one of those DMZ's already set up?
It's not quite that simple, you have to setup your trunking and the switchport connecting to the pix must be a trunk port, setup sub-interfaces on the pix and assign the sub-interfaces the appropriate IP addresses.

Author Comment

ID: 10943744
thanks for your help you certainly pointed me into the right direction

Featured Post

Webinar June 1st - Attacking Ransomware  

The global cyberattack that corrupted hundreds of thousands of computer systems on May 12th had a face, name, & price tag that we’ve seen all too often in recent years: Ransomware. With the stakes – and costs – of a ransomware attack higher than ever, is your business prepared ?

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor ( If you're interested in additional methods for monitoring bandwidt…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question