Hi, Good points about the Cisco 3000 VPN Concentrator. One thing that bears mentioning about the *firewall* is that the VPN3K does basic NAT/Port Filtering. Hardly, imho, a *robust* firewall solution...but it's all about risk vs. hassle/headaches.
http://www.cisco.com/en/US/partner/products/hw/vpndevc/ps2284/products_qanda_item09186a0080094cf4.shtml#Q14 My two pesos :) -scm RE:Rudolf Eggelbusch RE>Hi Mario, RE> RE>I expect that that the company whant to use WEP Encryption(better than RE>nothing but not a strong encryption) and or LEAP Authentication for that RE>reason Cisco Secure ACS is needed. RE>If you need to have more security as with WEP Encryption you can build an RE>overlay VPN with VPN Clients on the forklisters (PC, Terminals) and a RE>central VPN Concentrator like the VPN3000 from Cisco this Concentrator has RE>also an Firewall build in and it offers a DMZ Zone for Wireless. RE>This box is very easy to configure and has reporting features build in. RE> RE>Best Regards Rudolf Eggelbusch, CCSS1/CCIP RE> RE>At 11:13 23.10.2002 +0200, [EMAIL PROTECTED] wrote: RE>>Hi List RE>> RE>>we are going to setup a WLAN in a warehouse to enable the forklifters to RE>>communicate with with the warehouse management (WM) system. The company, RE>>which will install all the equipment suggested to setup a Cisco Secure ACS RE>>for security reasons. However, I would prefer the installation of a firewall RE>>and having a separate network segment for this WLAN, because the traffic RE>>between the WM system and the forklifts isn't critical at all, but the traffic RE>>on the company LAN is. So, my idea is to restrict the traffic going through RE>>this firewall to only the needed protocols and IPs (outgoing and incoming), RE>>to protect the rest of the companys LAN. RE>>Any thoughts, caveats, comments? RE>> RE>>TIA RE>> RE>>Mario RE> RE>