cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
683
Views
0
Helpful
3
Replies

How to make a DMZ space using two PIXs

andy
Level 1
Level 1

Hi all,

i've got 2 PIXs 506E and i wanna make a DMZ space to improve security of my servers who will be then inside DMZ.

If it'll be possible to do it, let me know how.

My regards

3 Replies 3

thisisshanky
Level 11
Level 11

506 has only two interfaces which means you can have only inside and outside interfaces. No DMZ. But with new versions of PIX software you can configure vlans.But according to this logical interfaces (vlans) are not supported by 501/506/506E. So you will have to use a min. of 515 to do DMZs.

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_command_reference_chapter09186a00801727a9.html#wp1091846

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus

Many thanks!

to be more clear i've attached a diagram file to explain my needing.

Please keep an eye on it and tell me if it's possible to do like i've drawn.

My regards

hey shanky,

I think 506 E supports VLANs.. You can have a look at this product doc of 506 E.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_data_sheet09186a0080091b13.html

it supports 2 VLANs max.. so, he can use the VLAN feature in the equipment he has...

anyway, andy, saw ur diagram.. You can have a network as shown in the diagram... you should be very careful asto , what traffic to nat and what to nonat and the access-restrictions applied on both the pixes..

i dont feel there will be any issues. infact u can also have a look at the vlan configurations.. tht might help ur case

Raj

Review Cisco Networking for a $25 gift card