lvcg
asked on
T1 Network Configuration
OK.. We are upgrading to a T1 From Cable with 1 static IP address. We now have 8 public IP addresses.
This is the hardware I already have to work with.
Cisco Pix 506E
1 2003 Exchange server as a member server
1 2003 standard server as the DC
We also have 2 dvrs that will need to be on the public network for remote viewing.
This is the hardware I already have to work with.
Cisco Pix 506E
1 2003 Exchange server as a member server
1 2003 standard server as the DC
We also have 2 dvrs that will need to be on the public network for remote viewing.
For your T1 connection, you're going to need a T1 CSU/DSU and a router.
Suggest either a Cisco 1800 series with WIC1-DSU-T1V2, or Adtran 3200 with T1 DSU
One of these will sit outside your PIX FW to terminate the T1. Alternative is to have the Telco provide the router and DSU.
How do you do public viewing of the DVR's? Via IP connection? Streaming? Other?
Suggest either a Cisco 1800 series with WIC1-DSU-T1V2, or Adtran 3200 with T1 DSU
One of these will sit outside your PIX FW to terminate the T1. Alternative is to have the Telco provide the router and DSU.
How do you do public viewing of the DVR's? Via IP connection? Streaming? Other?
ASKER
They have provided the Adtran and the ethernet portion. I guess the question is the safest way to set this up. Right now I can plug in the Adtran to the ethernet switch and setup any device with any of the 8 IP addreses, but I am worried about plugging in the adtran to my switch for security reasons.
This is what I am thinking...
I do not have a managed switch for V-lans, so I am thinking about a stand alone swith for the public IP addresses, Place the Pix between the switch with the public IPs and place another switch on the private side of the PIX for securing the internal network and then plug in my DVR that can reside on the public switch?
Is this a secure method? If so, should I also place the exchange on the private side and just open the appropriate ports for the exchange?
This is what I am thinking...
I do not have a managed switch for V-lans, so I am thinking about a stand alone swith for the public IP addresses, Place the Pix between the switch with the public IPs and place another switch on the private side of the PIX for securing the internal network and then plug in my DVR that can reside on the public switch?
Is this a secure method? If so, should I also place the exchange on the private side and just open the appropriate ports for the exchange?
Yes, that is the most logical configuration.
switch -- pix -- switch --
If you know what ports/protocols the DVR uses it too can be behind the PIX with a static 1-1 nat and you won't need that extra switch. Just use a crossover cable between the Adtran Ethernet port and your PIX outside.
Yes, bring everything you can behind the PIX and only open the required ports.
switch -- pix -- switch --
If you know what ports/protocols the DVR uses it too can be behind the PIX with a static 1-1 nat and you won't need that extra switch. Just use a crossover cable between the Adtran Ethernet port and your PIX outside.
Yes, bring everything you can behind the PIX and only open the required ports.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
What specifically are you needing help with? The T1 part of it, setting up port forwarding to your servers/DVRs or both?
cheers