Hi - I have a small, old network for my company (software design shop) with 40 workstations, 20 users, 15 servers, and a single T1 connected to our Cisco 2610 router. The router is running an old version of the IOS and I do not have SmartNet for it, and the only security I have for my network is the access lists on that router.
I do have about 15-20 servers / services that need to be accessed by the internet on my network, as well as VPN clients connecting to our Microsoft PPTP VPN server.
Would a basic PIX 501 do the trick to secure up the network?
Furthermore, I'm running basic NAT on my router, and all my internal machines (Exchange, www) have one NIC each with an internal IP which is translated at the router to the public IP. I have a feeling that this is not a safe way to be doing things, but am unsure of how to allow access properly.
I've also been lookint at the IPCop firewall product, but was thinking that at PIX 501 would do the trick better. I'll also move my VPNing out to there as well.
Thoughts? Suggestions? If this is the wrong forum for this basic sort of questioning, I'd love a couple references to good resources.
Thanks in advance for info.