Network Design

[Jeff McClintock <lord_fiery () yahoo com>]

Hello,

I've been tasked with creating my first ever network.  Definitely 
exciting, but lots of stuff to know :)  Given that, I wanted to run this 
by you guys and get some opinions.  I work for a small firm of 20-25 
employees that use Windows 2000 and XP exclusively.  They are planning to 
scale to a maximum of 50 people within a year.  They have a full T1, and 
want to have an FTP server, VPN and OWA access.  Web hosting is done by 
their ISP.

Does this seem like a pretty secure set up for them:

Internet -> Firewall -> (DMZ) FTP/OWA server (DMZ) -> DMZ Firewall -> 
Corporate LAN (with Exchange, employee machines, etc...)

If so, any rec's on firewalls for something like this?  Since it's a 
small firm, price is always an issue.

thanks
jm

---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Federal, September 29-30 (Training), 
October 1-2 (Briefings) in Tysons Corner, VA; the world's premier 
technical IT security event.  Modeled after the famous Black Hat event in 
Las Vegas! 6 tracks, 12 training sessions, top speakers and sponsors.  
Symantec is the Diamond sponsor.  Early-bird registration ends September 6.Visit us: www.blackhat.com
----------------------------------------------------------------------------