Hi all,
I am part of the IT team for a SW Company. We develop/maintain SW for a few customers around the globe. There are abt 1000 employees in the org.
For security we are using a Checkpoint firewall on the perimeter.
Now to improve security, we are thinking of going for internal firewall also.
I plan to subnet the network into different projects. My requirements for the internal firewall is that different project teams should not access each other network. Also there will be a subnet where common servers will be located and this should be accessible. (VPNs for the client networks are handled by checkpoint)
My boss says a L3 switch with ACL should be sufficient for the internal firewall whereas I feel we should go for a Netscreen / Cisco PIX as the internal firewall.
Can I get the views of the people here as to the advantages or disadvantages of these 2 options. If there is any other suitable option that I am missing pls give that too.
Thnx in advance.
Venky