Solved

2811 Router for Firewall

Posted on 2010-09-15
7
527 Views
Last Modified: 2012-05-10
I have a Cisco 2811 Router, and I would like to get my CCNA/Security Cert. Will this router function as a firewall for my lab inviroment?

If not what would you sugest?
0
Comment
Question by:troy93955
  • 3
  • 3
7 Comments
 
LVL 9

Expert Comment

by:ffleisma
Comment Utility
If you are familiar with GNS, you could make a lab setup for various Cisco IOS routers, PIX and ASA. Packet Tracer could also help you on simulations with AAA, latest version 5.3 has RADIUS and TACACs server on it.

Glad to help you if you wish to use GNS. :-)
0
 

Author Comment

by:troy93955
Comment Utility
I have:
2 2850's (Sorry messed up on first post)
4 4811
3 2950 Sw
1 3550 Sw

I was kind of hoping to build a sweet lab. I recieved all the equipment for free so was no money out of pocket (Yet). But I seem to be a little obsessed right now with the whole lab thing.

Your thoughts?

What is GNS anyway? I have heard of Packet tracer though.
0
 
LVL 22

Assisted Solution

by:Matt V
Matt V earned 100 total points
Comment Utility
Current IOS versions can be purchased with the basic firewall and stateful firewall editions for the 2800 series.

These editions will allow you to do the required prep work for the CCNA security.  PIX is a dead technology, but if you come across an ASA that would be good practice as well.
0
Highfive + Dolby Voice = No More Audio Complaints!

Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

 
LVL 9

Accepted Solution

by:
ffleisma earned 400 total points
Comment Utility
GNS is an emulator for Cisco IOS, unlike simuators like Packet Tracer, it actually runs a real Cisco IOS, it can also handle PIX and ASA great for building virtual Labs without spending a dime.

Also, you can setup a lab in GNS, use your existing ethernet card on your PC, then interface it from the virtual environment towards a physical switch/router.

if need materials you can go to link I found, great complete materials. everything you need

http://www.careercert.info/2009/08/cisco-ccna-security-certification.html

looking at the coverage for CCNA security, I think Packet Tracer can handle most of the labs needed there.

but if your planning on continuing to CCSP, you'll have to have hands on ASA.

Link to GNS is below

http://www.gns3.net/

I know this would open a lot of questions for you man, just fire on, be glad to help.

For me I've been using GNS to complete my CCNP, done incredible labs for my BSCI, and sometimes even before I deploy a solution in my job, i usually simulate first on GNS.

0
 
LVL 9

Expert Comment

by:ffleisma
Comment Utility
I've looked further into the coverage for CCNA security. I think you won't have much probelm using your existing equipment as long as you have the IOS with features for VPN, IOS firewall, and IOS IPS. I suggest upgarde your IOS to advance enterprise if you can.

Besides that, another configuration would be AAA. you'll need to setup a TACACs or RADIUS server, there are a lot of freeware RADIUS server that runs on linux, a few on windows. I found a 30 day free TACACs linked below.

http://www.xperiencetech.com/download/gettrial.asp
http://www.xpresslearn.com/tools/software-tools/cisco-tacacs-server-for-windows

If you don't want to fuss over intalling a TACACs/RADIUS server, then using Packet Tracer 5.3 would be sufficient for practice, it has TACACs and RADIUS there that you can play with.

0
 

Author Comment

by:troy93955
Comment Utility
sorry dude let me get my head out...
4 1841,s
2 2811,s
0
 

Author Closing Comment

by:troy93955
Comment Utility
Thanks Guys
0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now