<div>
<div class="content wysiwyg-content">
Currently we are running a web server on a Windows XP Pro PC behind our firewall. It is currently running apache and mysql to support our sites. Our current network configuration is &nbsp;<br />
<br />
internet -&gt;router-&gt;Pix 515e-&gt;switch-&gt; file servers, web server, exchange server, pcs, etc...<br />
<br />
I am thinking about purchasing the dmz addin card for the Cisco Pix and putting the web servers in the dmz. Would this be ideal or is there a better configuration? Also, would a Watchguard X500 or X700 be more beneficial to me than the Pix?
</div>
</div>


Currently we are running a web server on a Windows XP Pro PC behind our firewall. It is currently running apache and mysql to support our sites. Our current network configuration is  

internet ->router->Pix 515e->switch-> file servers, web server, exchange server, pcs, etc...

I am thinking about purchasing the dmz addin card for the Cisco Pix and putting the web servers in the dmz. Would this be ideal or is there a better configuration? Also, would a Watchguard X500 or X700 be more beneficial to me than the Pix?

Should I move our web server to the DMZ?

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Software Firewalls

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).

Cisco

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.