Putting a new server behind a firewall that has no NIC's spare

Posted on 2004-04-27
Last Modified: 2013-11-16
I'm wanting to put in a new file server behind the already existing firewall (Cisco PIX 515e) which has already used up all its NIC's with a terminal server, sql server, Nortel contivity switch, linux proxy and mail server, and a win 2k server that hosts extranet web pages. my network layout looks like this:
                                                     Internal LAN
                                        |--------rest of the other servers
FOBOT----switch-----PIX firewall-----|--Contivity Switch
                                                     |        |
                                                     |-----hub-----Cisco 801 router------64k IDSN----------

This new file server going in is going to be accessed remotely via the fibre optic over the other side of the site, i want this server to be on like a VLAN so users connecting to it cant see the rest of the equipment on the network, how would i go about doing this?

thanks anthony
Question by:Anthony_E
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
LVL 79

Expert Comment

ID: 10935212
How many interfaces do you have on the PIX? 3 or 6? If only 3, then you can swap out the single NIC for a quad port (if you have unrestricted license).
Does your internal switch do VLANS? If so, your PIX inside interface does too...

Author Comment

ID: 10935632
yeah my switch does do VLANS, so does that mean all i have to do is setup a VLAN for 1 port and setup the PIX for that IP?

Author Comment

ID: 10935645
and by the looks of it it has 5 interfaces, i cant see behind the actuall PIX cos its mounted and from diagrams i have from ppl who documented it it seems to have 5 interfaces all being used.
Secure Your WordPress Site: 5 Essential Approaches

WordPress is the web's most popular CMS, but its dominance also makes it a target for attackers. Our eBook will show you how to:

Prevent costly exploits of core and plugin vulnerabilities
Repel automated attacks
Lock down your dashboard, secure your code, and protect your users


Author Comment

ID: 10935648
sorry its 6 not 5 must have typoed twice
LVL 79

Accepted Solution

lrmoore earned 125 total points
ID: 10938011
Are all interfaces already in use? If you have 4 different DMZ's why can't you just add this server to one of those DMZ's already set up?
It's not quite that simple, you have to setup your trunking and the switchport connecting to the pix must be a trunk port, setup sub-interfaces on the pix and assign the sub-interfaces the appropriate IP addresses.

Author Comment

ID: 10943744
thanks for your help you certainly pointed me into the right direction

Featured Post

Get proactive database performance tuning online

At Percona’s web store you can order full Percona Database Performance Audit in minutes. Find out the health of your database, and how to improve it. Pay online with a credit card. Improve your database performance now!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
This program is used to assist in finding and resolving common problems with wireless connections.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…
Suggested Courses

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question