Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Configure pix 506e firewall with 1721 router on flat network

Posted on 2006-10-24
3
Medium Priority
?
354 Views
Last Modified: 2013-11-16
I have never configured a firewall before, and I have several questions.
Q#1: Do I even need the 1721 router if I use the pix 506e on a flat network? I have been reading solutions that might suggest that I do not.  
1721 --->HP4000m switch--->8 other HP 2500 switches...and 2 dns servers..thats the network.

Q#2: If keeping the router, do I need to configure anything in the router to communicate with the pix?

Q#3: How do I configure for VLANS and VPN in the pix?  I am using NAT in the router as I am only using private ips '192.168.1.0'.  I have 4 usable ips from the ISP.  71.153.188.154-157.
0
Comment
Question by:comspec2
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 11

Accepted Solution

by:
prueconsulting earned 2000 total points
ID: 17796233
506E can support 1 VLAN and 1 physical address on the inside interface and 1 on the external

What are you presently connecting the 1721 to ?
If you are connecting to a DSL modem or cable/ethernet then the PIX itself will suffice.

If you are connecting to a Serial connection ( ie Frame / t1 etc ) then you will need the router

2 - The Pix will point to the router as its default gateway.  Remove NAT on the router so its just a straight passthrough.

3- For the PIX you will configure your inside interface with a private ip address and your outside with one of the ISP addresses

nat (inside) 1 0.0.0.0 0.0.0.0 0 0 will take care of natting the outbound traffic

to create a vlan ( keeping in mind it only supports a single vlan )

conf t
int vlan x

Best bet would be if you need to vlan would be put the pix interface on a vlan off the 4000m and allow that to do the routing to the PIX from the other vlans vs trying to have multiple vlans ending on the PIX.
0
 

Author Comment

by:comspec2
ID: 17796395
The router is connected via ethernet straight to the DSL wall mount in the phone closet.
Are you saying just simply move the NAT config from the router to the PIX?  
0
 
LVL 11

Expert Comment

by:prueconsulting
ID: 17797077
Yes you can connect the PIX directly to the DSL wall mount and then put the DSL configuration onto the PIX ( username etc)


Well in this case you wouldnt require the router at all .

But yes let the PIX perform the Nat vs the router performing NAT otherwise you would end up with some issues trying to make VPN connectivity work
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On Feb. 28, Amazon’s Simple Storage Service (S3) went down after an employee issued the wrong command during a debugging exercise. Among those affected were big names like Netflix, Spotify and Expedia.
As managed cloud service providers, we often get asked to intervene when cloud deployments go awry. Attracted by apparent ease-of-use, flexibility and low computing costs, companies quickly adopt leading public cloud platforms such as Amazon Web Ser…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
Suggested Courses

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question