RE: [fw-wiz] Home Environment Cisco
From: Bob Wanamaker - Avant Systems, Inc. (rlw_at_avantsystems.com)
Date: 05/30/03
- Previous message: Jason Ostrom: "RE: [fw-wiz] Home Environment Cisco"
- In reply to: Nathan: "RE: [fw-wiz] Home Environment Cisco"
- Next in thread: Ben Nagy: "RE: [fw-wiz] Home Environment Cisco"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: <firewall-wizards@honor.icsalabs.com> Date: Thu, 29 May 2003 21:57:02 -0400
Greetings.
I'd strongly second the PIX 501. I have one sitting in the box to get
installed for me for the fifth time; every time I get one config'd, a friend
ends up taking it for his/her home network, buying it, and I buy another
one.
Sure, you can create an ACL - but that's only part of what a firewall does.
You'll be giving up stateful packet inspection; fixups; etc. Plus an OS and
appliance that was designed to be a firewall.
You really don't need the routing features that a Cisco router will give
you - you're routing will be a simple default route.
Support contracts are pretty reasonable on a 501 - in the neighborhood of
150 bucks for a couple of years, and it includes TAC support, where you'll
start off with a low level tech and fight your way through the food chain.
However, I'm not sure that you'll need a contract - I'm willing to bet that
I can give you a sample config that you can modify and have running in a
couple of minutes.
I'm a big fan of the PIX, in case you can't tell.
Bob
-----Original Message-----
From: firewall-wizards-admin@honor.icsalabs.com
[mailto:firewall-wizards-admin@honor.icsalabs.com]On Behalf Of Nathan
Sent: Thursday, May 29, 2003 3:57 PM
To: salgak@speakeasy.net; firewall-wizards@honor.icsalabs.com
Subject: RE: [fw-wiz] Home Environment Cisco
But won't I be able to create an ACL based on ports in the IOS?
I can harden the systems/services if I can just restrict ports, I don't need
a firewall if I can do that.
About how much are support contracts from Cisco? And if I get one does that
only include the firmware, or do I get to bother a low level tech on the
phone too?
_nathan
>>-----Original Message-----
>>From: salgak@speakeasy.net [mailto:salgak@speakeasy.net]
>>Sent: Thursday, May 29, 2003 3:39 PM
>>To: nathan.grandbois@cerdant.com; firewall-wizards@honor.icsalabs.com
>>Subject: Re: [fw-wiz] Home Environment Cisco
>>
>>
>>> -----Original Message-----
>>> From: Nathan [mailto:nathan.grandbois@cerdant.com]
>>> Sent: Thursday, May 29, 2003 07:22 PM
>>> To: firewall-wizards@honor.icsalabs.com
>>> Subject: [fw-wiz] Home Environment Cisco
>>>
>>> List members,
>>>
>>> I seek your advice regarding which Cisco router to choose,
>>if any. I know
>>> this is a firewall list, but many of you have experience with Cisco
>>> products. So here goes...I was talking with my dad and he
>>wants me to set up
>>> a network for him at home. I have networking experience,
>>just not with any
>>> cisco products. I recommended he get just a 50 dollar
>>router from Bestbuy or
>>> something but his company is going to give him a lot of
>>money to subsidise
>>> his working from home and he wants something expensive, I
>>think just to
>>> spend their money but who cares. I see this as an
>>opportunity to learn cisco
>>> and help my dad. He has a Solaris ultra 60, and two win98
>>workstations at
>>> home he wants to be able to communicate, as well as have
>>access to the
>>> internet (NAT). I can worry about the details of the
>>internal network, so my
>>> question is, which cisco router should I get for this
>>purpose. I really know
>>> nothing about Cisco, and don't feel like searching through
>>all the different
>>> models and prices if someone know the "base" cisco router.
>>Any suggestions
>>> would be nice, I can do the homework from there, I just
>>need some model
>>> numbers to look at.
>>
>>Pick up a used 1600 or 2500 series router on EBay or
>>whichever other online auction service you prefer. Coupla
>>hundred bucks, max. THEN get a support contract from Cisco,
>>so you can get the latest IOS, access to updates, etc.
>>
>>Caveat: learning one Cisco router is not enough. You also
>>need to learn switches, etc. I'd spend cash on Cisco
>>simulation software as a better way to learn Cisco. . .
>>
>>Reminder: a 50-dollar router from BestBuy also includes a
>>Firewall. A Cisco 1600 or 2500-series will not. And NAT is
>>NOT a firewall.
>>
>>
>>
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Jason Ostrom: "RE: [fw-wiz] Home Environment Cisco"
- In reply to: Nathan: "RE: [fw-wiz] Home Environment Cisco"
- Next in thread: Ben Nagy: "RE: [fw-wiz] Home Environment Cisco"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
