Proposed Network Design with PIX Firewall
Task 1: Basic Configuration for the Cisco Security Appliance
Tables 20-1 through 20-5 list the information required for you to configure the Cisco
Security Appliance at the Reston headquarters. Use the information from the tables to
configure your Cisco Security Appliance according to the network diagram shown in
Figure 20-2.
Internet
Remote
Users
Minneapolis
Office
Houston
Office
User
User
User
User User User
192.168.3.1 10.30.10.1
192.168.3.2
HOU-PIX
Web
Server
172.16.31.4
172.16.31.7
Logging
Server
172.16.31.4
Mail
Server
DMZ
172.16.31.1
10.10.10.1
192.168.1.1
10.20.10.0/24
192.168.2.2
10.20.10.1 192.168.2.1
MN-PIX
192.168.1.2
Primary
Failover
Secondary
HQ-PIX
10.10.10.7
TACACS+
Server
172.16.31.0/24
10.10.10.0/24
FTP
Server
172.16.31.6
VPN
(IPSec Tunnels)
HQ
Perimeter
User User User