Greetings ...
I am looking at building a firewall out of a Cisco 3101.
The setup will be simple, well simple compared to some of the setups
I have seen discussed here.
Basically I want my network to look sort-of like this.
"Expendable" side | "Not so Expendable" side
|
+-----------+ |
| anon ftpd | |
| & httpd | |
+-----v-----+ +------+
___ | |Cisco |
Internet >=--+ +---+-------< 3101 >------=< Our Net
~~~ | |
^ ^ +------+
| | |
Fibre 10-Base-2 |
|
This is what I need to let thru the firewall:
Incoming: smtp, nntp, ping, WWW,
(from selected domains & machines) X, rpc, dce, telnet, rlogin, ftp, lots of
misc. ports for odd-ball applications.
Outgoing: Everything...
I know there will have to be some hideous rule-sets to apply/work-out,
but that is another problem. My question is, Can a Cisco 3101 handle this
many rules without degradeing the network through-put to drastically?
Or is there some other model of cisco I should be looking at?
All info/tales of woe/advice is welcome.
Thanks in advance ... David
--
_--_|\ David Conran, Voice: +61-7-365-4303
/ * Systems Administrator Fax: +61-7-365-4311
\_.--._/ DSTC, Level 7, Gehrmann Laboratories, Email: lucifer @
dstc .
edu .
au
v The University of Queensland, Q, 4072 "Reach out and grep someone"
|
|
