Solved: PIX 501 Port Segmentation for teleworkers?

r-lemaster · ‎06-28-2003

We're evaluating PIX vs. Netscreen & SonicWALL for teleworkers. Both

SonicWALL and Netscreen offer a port segmentation feature that allows the

corporate VPN to be extended to only specific ports. This means that Mom or

Dad can be on the company VPN, but anyone else on that home network (kids)

won't be able to access the corporate VPN. Does Cisco offer such a

feature or VLAN functionality, or do we have to use a Netscreen or SonicWALL

firewall for home users?

pcomeaux · ‎06-29-2003

Sure, the Pix can offer similar functionality - but even better.

How about authenticating each user as they attempt to cross the tunnel?

User Level Authentication is a feature in 6.3 Pix OS.

This is more secure then simply letting unauthorized users simply move from one port to another on the Netscreen or Sonicwall.

peter

pcomeaux · ‎06-29-2003

Sure, the Pix can offer similar functionality - but even better.

How about authenticating each user as they attempt to cross the tunnel?

User Level Authentication is a feature in 6.3 Pix OS.

This is more secure then simply letting unauthorized users simply move from one port to another on the Netscreen or Sonicwall.

peter

r-lemaster · ‎06-29-2003

Ah, yes. this is much better. Thank you Sensei.