[c-nsp] Sizing up a Cisco PIX
su1droot
su1droot at gmail.com
Sat Jan 15 14:14:22 EST 2005
Yup, 10 mac address traversing from inside to outside. If you go
above 10 the other devices traffic will by denied by the pix and will
not pass. I use a 501 in my home office here, it's nice little box.
On Tue, 11 Jan 2005 12:37:40 -0500, Jim McBurnett <jim at tgasolutions.com> wrote:
> 10 users, equates to 10 MAC addressable traffic paths from inside to
> out..
> At least that is how I have interpretted the website... Anyone got a
> comment here?
>
> If those 3 are it, and no other traffic will be protected by the PIX, a
> 501 mail suit you well.....
>
>
> Jim
>
> -----Original Message-----
> From: Kim Onnel [mailto:karim.adel at gmail.com]
> Sent: Tuesday, January 11, 2005 7:20 AM
> To: Jim McBurnett
> Cc: cisco-nsp at puck.nether.net
> Subject: Re: [c-nsp] Sizing up a Cisco PIX
>
> > How many hosts?
> For now 3 hosts, a DNS server, a Netflow aggregation server, and another
> critical server
>
> > If you only have 3 hosts, and don't need failover and it will be a
> > dedicated LAN for them behind the PIX, just get a 501 with a 10 user
> > license.
> what is meant by 10 user liscence, 10 ssh sessions or 10 nodes to
> protect, i thought its measured with traffic/throughput.
>
> > IF you may need to do a DMZ and have more hosts, look at the 506(dot1q
>
> > vlan DMZ) or 515(dot1q vlan DMZ and physical port DMZ)
> >
> > Later,
> > Jim
> >
> > -----Original Message-----
> > From: Kim Onnel [mailto:karim.adel at gmail.com]
> > Sent: Monday, January 10, 2005 5:30 AM
> > To: cisco-nsp at puck.nether.net
> > Subject: [c-nsp] Sizing up a Cisco PIX
> >
> > Hi, i want to size a firewall for my Dns server + netflow log
> > collector
> > + bastion host,
> >
> > Anytips on how to size up a firewall(cisco pix) ?
> > _______________________________________________
> > cisco-nsp mailing list cisco-nsp at puck.nether.net
> > https://puck.nether.net/mailman/listinfo/cisco-nsp
> > archive at http://puck.nether.net/pipermail/cisco-nsp/
> >
> >
>
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>
More information about the cisco-nsp
mailing list