ANNOUNCEMENT - The community will be down for maintenace this Thursday August 13 from 12:00 AM PT to 02:00 AM PT. As a precaution save your work.
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

230
Views
0
Helpful
1
Replies
Highlighted
Beginner

Network security best practice assistance

Our Internet access is connected to a Nexus 9500 switch.  Internet traffic is passed through the Nexus to a none-Cisco firewall [master/slave fail-over] for filtering.  Data is filtered by the firewall back to the L3 switch for routing to destination.  I appreciate suggestion for enhancing network security by placing the firewall(s).  Options: 1) Directly connect the Fortigate to the ATT internet router; place the nexus behind the firewall;  2) place a perimeter ISR router as the first point of contact to the Internet, followed by the firewall, followed by the Nexus.    The nexus is connected to MPLS network and other remote sites use Internet/IPSEC tunnels to access resources at HQ.  The Fortigate terminates IPSEC tunnels. Any suggestions to enhance network security from unauthorized access through the Internet would be appreciated.
I thank you beforehand.

 

1 REPLY 1
Highlighted
Cisco Employee

This is your best starting

This is your best starting point.

http://www.cisco.com/c/en/us/solutions/enterprise/design-zone-security/index.html 

Also, check out the presentations and videos at Cisco Live On demand library. Registration is free.

https://www.ciscolive.com/online/connect/search.ww?zid=Global 

 

Thanks,

Chetan