RE: Firewall in ATM environment (design question).

[Ryan Ngai Hon Kong]

Title: RE: Firewall in ATM environment (design question).

Sorry for the confusion caused yesterday.

Ignoring the fact of the Internet bandwidth (say E1 line), they were using the Cisco 3600 series router to connect

to Internet. The reason why we put a firewall in my diagram was to maintain a secure connection between

branch to branch, LAN to LAN and branch/LAN to Internet.

 

The scenario such as Remote Network A (ATM connection to the core ATM switch) will need a secure

connection either inbound or outbound traffic. Others such as LAN A or B might prohibit from any other

source to came into their network.

What I had in mind or option I could drafted out are like below:

 

a) Implement a L3 catalyst switch to connect Remote LAN A & B via a VLAN to the Internet and filter

any incoming traffic from other source other than from the Internet router.

 

b) Use e-LANE (I'm a bit confuse with this, but it's an opinion from friends).

 

Please feel free to look into the diagram at http://www.geocities.com/ryanhk/diagram.jpg

 

Thank you.

Ryan Ngai @ ENT
E-mail: hkngai    Ext:6805

-----Original Message-----
From: Greene, Patrick [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, October 17, 2000 10:24 PM
To: 'Ryan Ngai Hon Kong'; '[EMAIL PROTECTED]'
Subject: RE: Firewall in ATM environment (design question).

Ryan,
What sort of Internet link do you have..what speed?  What model router do you have at the internet.  You may want to just put the Firewall Feature Set on your internet router an be done with it, depending on the link speed going to Net. 

Patrick Greene

-----Original Message-----
From: Ryan Ngai Hon Kong [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, October 17, 2000 3:45 AM
To: '[EMAIL PROTECTED]'
Subject: RE: Firewall in ATM environment (design question).

Ryan Ngai @ ENT
E-mail: hkngai    Ext:6805

-----Original Message-----
From: Ryan Ngai Hon Kong
Sent: Tuesday, October 17, 2000 12:00 PM
To: '[EMAIL PROTECTED]'
Subject: Firewall in ATM environment (design question).

Hi guys,

Just another design question.

                - non cisco ATM switch  -       Cisco Router - Internet
ATM             - non cisco ATM switch  -       LAN 1
Core            - non cisco ATM switch  -       Internal Network
Switch  - non cisco ATM switch  -       Remote Network A
                - non cisco ATM switch  -       Remote Network B
                - non cisco ATM switch  -       LAN 2

Where do you think we can position a firewall?
Other alternative such as create LANE or propose switch to create
VLAN is welcome.

Thanks.

Ryan Ngai @ ENT
E-mail: hkngai    Ext:6805

_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]