|
|
| Brad Denham 2004-03-16, 5:26 pm |
| I am working on my Security CCIE and I am looking to purchase a PIX for
my lab. Does the 501 have any DMZ capabilities? I know it has an
outside interface and an inside one, but can any of the 4 switch ports
be set as a DMZ port?
Thank you
| |
|
| "Brad Denham" <bdenham@null.com> wrote in message
news:160320041412174413%bdenha
m@null.com...
> I am working on my Security CCIE and I am looking to purchase a PIX for
> my lab. Does the 501 have any DMZ capabilities? I know it has an
> outside interface and an inside one, but can any of the 4 switch ports
> be set as a DMZ port?
> Thank you
No. You can not separate DMZ physically. But if you have release 6.3, you
can create VLANs on Inside interface and create a few interfaces. I don't
remember any limitations on this, but I know it was announced as a new
feature.
| |
| John Taylor 2004-03-16, 8:25 pm |
| I have several in my enterprise and the answer is no, it does not have any
DMZ's. I would look at the Pix 506. I'm not sure if the 506 has DMZ's, but
the 501 sure doesn't.
"Brad Denham" <bdenham@null.com> wrote in message
news:160320041412174413%bdenha
m@null.com...
> I am working on my Security CCIE and I am looking to purchase a PIX for
> my lab. Does the 501 have any DMZ capabilities? I know it has an
> outside interface and an inside one, but can any of the 4 switch ports
> be set as a DMZ port?
> Thank you
| |
|
| There's no DMZ until the 515 and the additional interface is optional on
that.
"John Taylor" <jt@somewhere.net> wrote in message
news:QeKdnSUdS7KqPcrdRVn-ig@netrox.net...
> I have several in my enterprise and the answer is no, it does not have any
> DMZ's. I would look at the Pix 506. I'm not sure if the 506 has DMZ's, but
> the 501 sure doesn't.
>
> "Brad Denham" <bdenham@null.com> wrote in message
> news:160320041412174413%bdenha
m@null.com...
>
>
| |
| Cisco_Guru 2004-03-16, 11:25 pm |
| I would suggest purchasing an old PIX 520. You should be able to pick up one
pretty cheap on eBay (I found 1 for $1000).
"Brad Denham" <bdenham@null.com> wrote in message
news:160320041412174413%bdenha
m@null.com...
> I am working on my Security CCIE and I am looking to purchase a PIX for
> my lab. Does the 501 have any DMZ capabilities? I know it has an
> outside interface and an inside one, but can any of the 4 switch ports
> be set as a DMZ port?
> Thank you
| |
|
| no, it wont support a DMZ. however, I really wouldnt worry about a DMZ if
you are studying for your Security CCIE. with the two interfaces, you
should be able to learn everything you'll need to learn on the pix 501 for
the Security CCIE. (IMHO) if you really want to play with a DMZ interface,
rent some rack time from a company that has pixes with more than 2
interfaces.
thanks,
-Brad Ellis
CCIE#5796 (R&S / Security)
Network Learning Inc
brad at eccie.com
www.ccbootcamp.com/quicklinks.html (Cisco Training)
www.routerie.com (Cisco R&S CCIE Discussion groups)
www.securityie.com (Cisco Security CCIE Discussion groups)
www.optsys.net (Cisco hardware)
"Brad Denham" <bdenham@null.com> wrote in message
news:160320041412174413%bdenha
m@null.com...
> I am working on my Security CCIE and I am looking to purchase a PIX for
> my lab. Does the 501 have any DMZ capabilities? I know it has an
> outside interface and an inside one, but can any of the 4 switch ports
> be set as a DMZ port?
> Thank you
| |
|
| hi.
no you can not !
/Henrik
"Brad Denham" <bdenham@null.com> skrev i en meddelelse
news:160320041412174413%bdenha
m@null.com...
> I am working on my Security CCIE and I am looking to purchase a PIX for
> my lab. Does the 501 have any DMZ capabilities? I know it has an
> outside interface and an inside one, but can any of the 4 switch ports
> be set as a DMZ port?
> Thank you
|
|
|
|