|
Posted by Leythos on September 4, 2005, 5:05 am
If you were Registered and logged in, you could reply and use other advanced thread options
> Guys,
>
> Currently my network sits behind the pix 501. I have very important
> personal data (financial statements, etc). Only port open is 25 at the
> File Server.
>
>
> dsl router ->switch-> pix(66.151.99.1 outside)-->File Server
> (192.149.115.2 inside) |
> |
> |
> |
> ---> Outside PC (outside the lan)
> (66.159.99.2 outside NIC1)
> (inside IP address NIC2??)
>
> The purpose of the 'Outside PC' sitting out of my network is for
> testing, ftp, etc. But I like to be able to access from the inside pc
> (File Server) to the Outside PC vice versa.
>
> How should I configure so I have the tightest security? VPN, windows
> routing, etc?
>
> Btw, all these IPs are just made up.
If you connect the PC so that it bridges both networks you don't need a
firewall, as you won't have any real protection for the LAN.
If you have more than one Public IP, put your trusted computers on the
PIX and IP1, then setup a cheap Linksys router on Public IP2 and put the
test computer on that device - do not connect it to the LAN of the PIX.
--
spam999free@rrohio.com
remove 999 in order to email me
| 
XML site map