My network is as follows:
Ethernet Segment -------|PIX|--------|RTR|----------OUT TO INTERNET
INTERNAL DMZ EXTERNAL
I have a few servers out in the DMZ zone. How and what is the standard for
security configuration for the PIX and the RTR (router). Is the RTR suppose
to shield only the servers in the DMZ and allow all other access inside? Is
the PIX suppose to be configured such that any traffic from the Ethernet
Segment on the INTERNAL network going through the INTERNET is filtered and
allowed via the OUTBOUND list on the PIX. How about the conduit? How is
that suppose to be used.
I have the network pretty much setup, but wanted some suggestions as to if
I'm doing it right. I'm currently using the RTR to protect the servers in
the DMZ as well as placing some security for inbound connections while using
the PIX to establish/filter what traffic can go outbound and what can't.
How about traffic coming inbound from the INTERNET, should that type of
traffic be filtered on the RTR or by using the conduit on the PIX. Any help
with how to setup security at what section of the network (where) would be
greatly appreciated. Thanks.
_________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.
Share information about yourself, create your own public profile at
http://profiles.msn.com.
___________________________________
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
