Q:
hocan we install and configure pix 515E between proxy and modem
I have to install and configure a pix 515E firewall between the internet and LAN. Our client have 2 Mbps internet connectivity and they have a public IP also. The modem is connected to switch. That switch is connected to the device called CYBERROAM, this device is using as a proxy server.
The cyberroam has four Ethernet port. Only two ports are using presently one is connected to LAN switch and another is to WAN. In LAN port they have given a local IP address and in wan port they have a public ip. In client PSs they have installed cyberroam software and user name password for access the internet.
They are using four networks that are
10.24.0.0 /16
10.34.0.0 /16
10.44.0.0 /16
10.35.0.0 /16
Even though we can communicate with any network easily, they have made some default gateways for that.
If I am connecting pix firewall between the modem and cyberroam what are the changes I should do what are the configuration I should give for provide internet to client Pcs.
The cyberroam has four Ethernet port. Only two ports are using presently one is connected to LAN switch and another is to WAN. In LAN port they have given a local IP address and in wan port they have a public ip. In client PSs they have installed cyberroam software and user name password for access the internet.
They are using four networks that are
10.24.0.0 /16
10.34.0.0 /16
10.44.0.0 /16
10.35.0.0 /16
Even though we can communicate with any network easily, they have made some default gateways for that.
If I am connecting pix firewall between the modem and cyberroam what are the changes I should do what are the configuration I should give for provide internet to client Pcs.
ASKED:
Nov 21 2008 2:28 PM GMT
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
A:
RATE THIS ANSWER
0
Click to Vote:
0
Click to Vote:
- 0
0
To eliminate any configuration you need on the modem, just use the WAN IP address of the Proxy as the new WAN IP of the PIX. You will then need to create a new network between the Pix and the Proxy. Maybe a /30 network for just two IP addresses. For testing you should use a bigger subnet so you can troubleshoot issues by testing a computer in the Pix/Proxy network to see which side is not configured correctly.
Basically you just have to make sure the PIX is configured correctly to block and pass traffic and the connection between the PIX and the Proxy is working.
