I am running server 2003 domain ent edition wiath AD,DNS,DHCP servers. I am in the process of installaing sophos appliance WS 1000 for web cache (http traffic filtering) and malware filtereing for my domain. The applicance has two ports at the back one LAN and one WAN. Under the configuration of the appliance I have to firewall cisco 2811 to accept port 80 and 443 only from this appliance:
-120 permit tcp any host 64.xx.xxx.xxx eq www does this command opens up port 80 on this firewall for this appliance of sophos ?
-120 permit tcp any host 64.xx.xxx.xxx eq 443 opens up 443 on this appliance?
there are other servers on my domain which have ports:
-120 permit tcp any host 64.xx.xxx.xxx eq www opened should I close it?
-120 permit tcp any host 64.xx.xxx.xxx eq 443 (this is excahnge server) do I have to close it?
Other configuration I am thinking of is to make this router the default gateway of my servers which are default gateway for http traffic of my clients. So that all http traffic has to pass through this appliance. Is it a good set up to think off?