INTERNET ACCESS AND CISCO PIX FIREWALL

Discussion in 'Server Networking' started by jeffuk123, Feb 18, 2006.

  1. jeffuk123

    jeffuk123 Guest

    Hi all,

    I'm not sure I've come through to the correct section. However, one of our
    clients has a Windows server 2000 setup, with a patch panal, negear 24 port
    switch, samsung cable modem and a cisco 501 pix firewall connected to the
    cable modem.

    I am actually just wondering where the missing 'router' comes into play in
    this type of setup. i.e. how do all client PCs get their internet access
    without a router installed?

    Also, 2 client PCs are in another room and I would prefer to give them
    wireless access rather than running cables through rooms. Can I replace the
    Cisco Pix Firewall with a wireless firewall router?

    Many thanks to all,
    Jeff
     
    jeffuk123, Feb 18, 2006
    #1
    1. Advertisements

  2. In
    You can use an Aironet in conjunction with the PIX. The PIX is acting as a
    NAT device.

    --
    Ace

    This posting is provided "AS-IS" with no warranties or guarantees and
    confers no rights.

    Having difficulty reading or finding responses to your post?
    Instead of the website you're using, I suggest to use OEx (Outlook Express
    or any other newsreader), and configure a news account, pointing to
    news.microsoft.com. This is a direct link to the Microsoft Public
    Newsgroups. It is FREE and requires NO ISP's Usenet account. OEx allows you
    to easily find, track threads, cross-post, sort by date, poster's name,
    watched threads or subject.

    Not sure how? It's easy:
    How to Configure OEx for Internet News
    http://support.microsoft.com/?id=171164

    Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
    Microsoft MVP - Windows Server Directory Services
    Microsoft Certified Trainer
    Assimilation Imminent. Resistance is Futile.
    Infinite Diversities in Infinite Combinations.

    The only thing in life is change. Anything more is a blackhole consuming
    unnecessary energy.
    ===========================
     
    Ace Fekay [MVP], Feb 18, 2006
    #2
    1. Advertisements

  3. jeffuk123

    jeffuk123 Guest

    So the PIX is acting as the router then?

     
    jeffuk123, Feb 18, 2006
    #3
  4. jeffuk123

    jeffuk123 Guest

    Hi

    Which model(s) of Aironet would you recommend? and so the PIX is acting as
    the router then?

    Many thanks
     
    jeffuk123, Feb 18, 2006
    #4
  5. In
    Yep! That's how it offers NAT, for NAT is a 'routed' function, so to speak.
    It is the gateway for all internal machines.

    Ace
     
    Ace Fekay [MVP], Feb 18, 2006
    #5
  6. In
    We use the Aironet 1231 AT. It works fine.

    Yes, any NAT device is a 'router' so to speak, taking into consideration
    what NAT does.

    Aec
     
    Ace Fekay [MVP], Feb 18, 2006
    #6
  7. Ace Fekay [MVP], Feb 18, 2006
    #7
  8. jeffuk123

    jeffuk123 Guest

    Thanks Ace

     
    jeffuk123, Feb 18, 2006
    #8
  9. jeffuk123

    jeffuk123 Guest

    Hi Ace

    Just one more question.

    Is the Aironet 1231 access point easy to configure. I assume I'll just
    connect it to the switch and give it a static IP out of range from other
    devices and turn off DHCP. Is DHCP turned off by default on this Access Point?

    The Windows 2000 server our client has is dishing out DHCP and is set to
    192.168.6.1, the Cisco Pix Firewall is set to 192.168.6.10, I obviously
    gather the Cisco Pix Firewall is set to static IP (I don't have the settings
    or log in details for this as someone else set it up).

    Is there anything else I need to configure on it? i.e. do I need to enter
    the Cisco Pix Firewall IP address or will the Aironet detect it
    automatically.

    Sorry for so many questions, I want to get an idea before tackling this.

    Many thanks,
    Jeff
     
    jeffuk123, Feb 18, 2006
    #9
  10. In
    There is not DHCP service on this AP. It's just an AP. It connects into your
    network. They do have another version that offers that service, but really
    it's not needed since youy would rather use your Windows DHCP because it
    works hand in hand with the dynamic DNS registration service (Option 081)
    that no other DHCP server can offer other than Microsoft's. If you are using
    your current router as your DHCP on any of your other clients, I would
    recommend no to.

    I hope it is static...
    Jeff, when you purchase it, make sure you get a Premium support package with
    it because the thing is complicated, but highly secure. You can put in a
    request to Cisco and they will guide you Step By Step to configure it. If
    you were to use Autoenrollment and other certificate features, then I would
    suggest to get familiar with Windows 2003 PKI and how autoenrollment works.
    Keep in mind an Autoenrollment cert is only possible with at least Win2003
    Enterprise Edition.

    Ace
     
    Ace Fekay [MVP], Feb 20, 2006
    #10
  11. jeffuk123

    jeffuk123 Guest

    Thanks Ace

     
    jeffuk123, Feb 20, 2006
    #11
  12. In
    My pleasure. You'll be happy with it. I like it so much, I may purchase one
    for home.
    :)

    Ace
     
    Ace Fekay [MVP], Feb 20, 2006
    #12
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.