General discussion

Locked

Placement of Firewalls

By xiaitmb ·
Have 2 firewalls - 1 Cisco Pix and 1 Checkpoint. The checkpoint is to function as a proxy firewall. There is a DMZ zone, an intranet zone and a Cisco Router. Appreciate guidance on how to place the 2 firewalls ? does it matter which one comes right after the router ? thanks.

This conversation is currently closed to new comments.

6 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

by CG IT In reply to Placement of Firewalls

humm so what your saying is that the Checkpoint is the perimeter firewall that acts as proxy between the internet and the network. Your PIX acts as the internal firewall between the DMZ and the network.

You want to know if the placement is correct?

Collapse -

by xiaitmb In reply to

Poster rated this answer.

Collapse -

by xiaitmb In reply to Placement of Firewalls

yeah. can this placement work?

Collapse -

by mshavrov In reply to Placement of Firewalls

How many interfaces do you have on your PIX firewall, and on your CheckPoint firewall? If you have enough interfaces on PIX firewall, I would recommend to use it as a "primary" firewall. You may use additional firewall if you are short on interfaces (for example, need more DMZs than you have). In this case you may connect them in parallel, and use PIX firewall for users traffic and VPNs, and use CheckPoint firewall as a DMZ firewall. You can also use CheckPoint firewall as a "screening device" or "IDS (intrusion detection system).

Good luck,

Mike
Cisco CCNP, CCDP, CCSP, Cisco Voice
Checkpoint CCSP
CompTIA Security+
etc...
http://www.headsetadapter.com

Collapse -

by xiaitmb In reply to

Poster rated this answer.

Collapse -

by xiaitmb In reply to Placement of Firewalls

This question was closed by the author

Back to Networks Forum
6 total posts (Page 1 of 1)  

Hardware Forums