10 users, equates to 10 MAC addressable traffic paths from inside to
out..
At least that is how I have interpretted the website... Anyone got a
comment here?
If those 3 are it, and no other traffic will be protected by the PIX, a
501 mail suit you well.....
Jim
-----Original Message-----
From: Kim Onnel [mailto:kari...@gmail.com]
Sent: Tuesday, January 11, 2005 7:20 AM
To: Jim McBurnett
Cc: cisc...@puck.nether.net
Subject: Re: [c-nsp] Sizing up a Cisco PIX
For now 3 hosts, a DNS server, a Netflow aggregation server, and another
critical server
If you only have 3 hosts, and don't need failover and it will be a
dedicated LAN for them behind the PIX, just get a 501 with a 10 user
license.
what is meant by 10 user liscence, 10 ssh sessions or 10 nodes to
protect, i thought its measured with traffic/throughput.
IF you may need to do a DMZ and have more hosts, look at the 506(dot1q
vlan DMZ) or 515(dot1q vlan DMZ and physical port DMZ)
Later,
Jim
-----Original Message-----
From: Kim Onnel [mailto:kari...@gmail.com]
Sent: Monday, January 10, 2005 5:30 AM
To: cisc...@puck.nether.net
Subject: [c-nsp] Sizing up a Cisco PIX
Hi, i want to size a firewall for my Dns server + netflow log
collector
+ bastion host,
Anytips on how to size up a firewall(cisco pix) ?
11 messages in net.nether.puck.cisco-nsp[c-nsp] Sizing up a Cisco PIX
