My Pix firewall is getting a little long in the tooth and I would like to replace it with something that is easier to use. I've got about 100 machines on my network, but I only have about 10 users that get on the Internet. Right now I have one webserver running behind the firewall, but I may outsource that in the near future. I also have Active Directory running with local DNS and DHCP setup on my Domain Controller.
I can do some basic things in the Pix, but have never found it very easy to manage. Can I just replace it with something like a simple D-Link or Linksys router? Will I still be protected as well? Can I let traffic pass to my one webserver and nothing else like I can with the Pix? Should I use DHCP on one of these devices and turn it off in Windows Server? My goal is to simplify the network setup, make repair/replacement simple, and hopefully do it all inexpensively. I'm preparing to switch from 2 T1's to Cavalier's Ethernet Express and I'd like to make the transition as easy as possible.