Firewall Wizards mailing list archives

RE: Home Environment Cisco

From: "Bob Wanamaker - Avant Systems, Inc." <rlw () avantsystems com>
Date: Thu, 29 May 2003 21:57:02 -0400

Greetings.

I'd strongly second the PIX 501.  I have one sitting in the box to get
installed for me for the fifth time; every time I get one config'd, a friend
ends up taking it for his/her home network, buying it, and I buy another
one.

Sure, you can create an ACL - but that's only part of what a firewall does.
You'll be giving up stateful packet inspection; fixups; etc.  Plus an OS and
appliance that was designed to be a firewall.

You really don't need the routing features that a Cisco router will give
you - you're routing will be a simple default route.

Support contracts are pretty reasonable on a 501 - in the neighborhood of
150 bucks for a couple of years, and it includes TAC support, where you'll
start off with a low level tech and fight your way through the food chain.
However, I'm not sure that you'll need a contract - I'm willing to bet that
I can give you a sample config that you can modify and have running in a
couple of minutes.

I'm a big fan of the PIX, in case you can't tell.

Bob



-----Original Message-----
From: firewall-wizards-admin () honor icsalabs com
[mailto:firewall-wizards-admin () honor icsalabs com]On Behalf Of Nathan
Sent: Thursday, May 29, 2003 3:57 PM
To: salgak () speakeasy net; firewall-wizards () honor icsalabs com
Subject: RE: [fw-wiz] Home Environment Cisco


But won't I be able to create an ACL based on ports in the IOS?
I can harden the systems/services if I can just restrict ports, I don't need
a firewall if I can do that.

About how much are support contracts from Cisco? And if I get one does that
only include the firmware, or do I get to bother a low level tech on the
phone too?

_nathan

-----Original Message-----
From: salgak () speakeasy net [mailto:salgak () speakeasy net]
Sent: Thursday, May 29, 2003 3:39 PM
To: nathan.grandbois () cerdant com; firewall-wizards () honor icsalabs com
Subject: Re: [fw-wiz] Home Environment Cisco

-----Original Message-----
From: Nathan [mailto:nathan.grandbois () cerdant com]
Sent: Thursday, May 29, 2003 07:22 PM
To: firewall-wizards () honor icsalabs com
Subject: [fw-wiz] Home Environment Cisco

List members,

I seek your advice regarding which Cisco router to choose,

if any. I know

this is a firewall list, but many of you have experience with Cisco
products. So here goes...I was talking with my dad and he

wants me to set up

a network for him at home. I have networking experience,

just not with any

cisco products. I recommended he get just a 50 dollar

router from Bestbuy or

something but his company is going to give him a lot of

money to subsidise

his working from home and he wants something expensive, I

think just to

spend their money but who cares. I see this as an

opportunity to learn cisco

and help my dad. He has a Solaris ultra 60, and two win98

workstations at

home he wants to be able to communicate, as well as have

access to the

internet (NAT). I can worry about the details of the

internal network, so my

question is, which cisco router should I get for this

purpose. I really know

nothing about Cisco, and don't feel like searching through

all the different

models and prices if someone know the "base" cisco router.

Any suggestions

would be nice, I can do the homework from there, I just

need some model

numbers to look at.


Pick up a used 1600 or 2500 series router on EBay or
whichever other online auction service you prefer.  Coupla
hundred bucks, max.  THEN get a support contract from Cisco,
so you can get the latest IOS, access to updates, etc.

Caveat: learning one Cisco router is not enough.  You also
need to learn switches, etc.  I'd spend cash on Cisco
simulation software as a better way to learn Cisco. . .

Reminder: a 50-dollar router from BestBuy also includes a
Firewall.  A Cisco 1600 or 2500-series will not.  And NAT is
NOT a firewall.


_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Home Environment Cisco Nathan (May 29)
- Re: Home Environment Cisco Paul Robertson (May 29)
- Re: Home Environment Cisco clark shishido (May 30)
- <Possible follow-ups>
- Re: Home Environment Cisco salgak (May 29)
  - RE: Home Environment Cisco Nathan (May 29)
    - RE: Home Environment Cisco Bob Wanamaker - Avant Systems, Inc. (May 30)
  - RE: Home Environment Cisco Ben Nagy (May 30)
    - RE: Home Environment Cisco hermit921 (May 30)
- Re: Home Environment Cisco salgak (May 29)
- RE: Home Environment Cisco Noonan, Wesley (May 29)
  - RE: Home Environment Cisco Jason Ostrom (May 30)
- RE: Home Environment Cisco Loomis, Rip (May 30)
  - RE: Home Environment Cisco R. DuFresne (May 30)
- RE: Home Environment Cisco James Baumgardner (May 30)
- RE: Home Environment Cisco Noonan, Wesley (May 30)
  - Re: Home Environment Cisco Jeremiah Cornelius (May 31)

(Thread continues...)