PIX vpn question

Have a question or want to start a discussion? Post it! No Registration Necessary.  Now with pictures!

Threaded View
I'm looking at getting a Cisco PIX 506 -
http://www.epinions.com/pr-Cisco_PIX-506E-BUN-K9_Firewall/display_~full_specs

With the VPN, does anyone know if you can do a firewall to firewall VPN.


Our current firewall, a nokia ip 350 with checkpoint, has a constant vpn
connection to a client who is also running checkpoint.  I would like to
know if I can still do this same firewall to firewall connection.

All in all there are three devices that I would want to do a 24x7 vpn
connection to.

1. The checkpoint firewall
2. A Cisco Concentrator (im assuming this one will be no problem)
3. And hopefully a SonicWall Pro 230

Anyone know if I can do this?

Re: PIX vpn question
Quoted text here. Click to load it

For future reference: that's a PIX 506E, not a PIX 506 . The E model
is newer and noticably faster but has the same capabilities as the
older.

Quoted text here. Click to load it

Yes, definitely.



http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800ef796.shtml
http://www.cisco.com/warp/public/110/cp-p.html

Quoted text here. Click to load it

Yes.


Yes.


That one I don't know offhand.

Re: PIX vpn question
I wouldn't advise getting a 506 as it is not supported in PIX OS 7.x.

I would recommend a 515E or an ASA for future compatibility.

Eric wrote:
Quoted text here. Click to load it


Re: PIX vpn question

Boutzev wrote:
Quoted text here. Click to load it

506E is getting the silent EOL treatment. Not officialy announced but
don't expect to see any further software for it.

Now on the otherhand in a few weeks an ASA will appear that will
replace the 506E


Re: PIX vpn question
jdobb2001 wrote:
Quoted text here. Click to load it

Do you happen to know the model of the ASA?

Whats the difference of an ASA or a PIX? I always thought PIX was 'the'
cisco firewall. Is ASA the next buzzword to put on your resume? lol

Re: PIX vpn question

Quoted text here. Click to load it


The ASA adds

Content Security and Control [CSC] (anti-virus, anti-spyware, file blocking,
anti-spam, anti-phishing, URL filtering)
http://www.cisco.com/en/US/products/ps6120/products_data_sheet0900aecd80402e4f.html
{Uses Trend Micro}

Advanced Inspection And Protection [AIP]
http://www.cisco.com/en/US/products/ps6120/products_data_sheet0900aecd80404916.html

More integrated ports (but no port expansion)

Active-Active failover

Features sliced, diced, and julienned into more license options for
your incompatability and spending pleasure.


The various ASA models range in encryption performance from about the
same as a PIX 525, to roughly 2/3 of the performance of a PIX 535.
But if you purchase and install the AIP, the cleartext performance
goes down to about that of the 515E, 525, or (1.5 x the 525) depending on
model.

Re: PIX vpn question
Walter Roberson wrote:
Quoted text here. Click to load it
http://www.cisco.com/en/US/products/ps6120/products_data_sheet0900aecd80402e4f.html
Quoted text here. Click to load it

sounds like what my sonicwall does. network distributed mcAffe. which is
the Only thing i like about the sonicwall.

Quoted text here. Click to load it
http://www.cisco.com/en/US/products/ps6120/products_data_sheet0900aecd80404916.html
Quoted text here. Click to load it
they like to do that don't they. Like there support. they break into
pieces. i have 400 pieces of support for one device... gotta love it.
Quoted text here. Click to load it

Re: PIX vpn question
We have a Cisco Pix fire wall and we have 18 vpn Connections setup on it i
think the limted is 25 on the other end we have linksys VPN End point boxes
setup seems to do good job



Quoted text here. Click to load it



Site Timeline