Posted on 2004-04-29
Here is brief introduction of my client's setup and then i will ask you a few queries
There are 50 workstations in the client's network 192.168.10.0 .
They connect to the internet through the router through isdn wan line.
router's isdn interface has no static address.
It neogiates with the isp router to obtain an IP address.
router blocks all kind of traffic except smtp through access-lists.
Now the client has brought a Cisco pix 506E firewall for more security.
and has asked me to configure it for him.
My queries are.
Does the client need to buy static Ip addresses to be assigned to the outside
interfaces of firewall and router.
If no then what is the alternative.
Already www ,telnet etc are blocked through router's access-lists
what all other security features can be enhanced with the firewall.