- Posts: 12
- Thank you received: 0
Cisco PIX515E Effectiveness Today.
- einklienermench
- Topic Author
- Offline
- New Member
Less
More
13 years 9 months ago #36573
by einklienermench
Cisco PIX515E Effectiveness Today. was created by einklienermench
Hi everyone, i was planning a new home network and found myslef asking if the old cisco pix515e is effective and may contribute to the security of the network today.
The main uses are a game server and a storage server. The line speed is 100/100 (SDSL).
The equipment in use in this order:
SDSL modem 100/100 (100mbit up/down)
Cisco PIX515E (Maybe)
Cisco 2611XM
Catalyst 2950
IBM servers and nas.
The major concern is that someone might gain from downtime on the server and i need to make sure that this wont happen. Also i would want to create a vpn connection so i can monitor my network remotely,
Will the 515e do?, will i protect my network from a small/medium scale dos/ddos attack?
The main uses are a game server and a storage server. The line speed is 100/100 (SDSL).
The equipment in use in this order:
SDSL modem 100/100 (100mbit up/down)
Cisco PIX515E (Maybe)
Cisco 2611XM
Catalyst 2950
IBM servers and nas.
The major concern is that someone might gain from downtime on the server and i need to make sure that this wont happen. Also i would want to create a vpn connection so i can monitor my network remotely,
Will the 515e do?, will i protect my network from a small/medium scale dos/ddos attack?
13 years 9 months ago #36574
by Nevins
Useful Threads
================================
www.firewall.cx/forum/2-basic-concepts/3...e-resource-page.html
Replied by Nevins on topic Re: Cisco PIX515E Effectiveness Today.
Honestly your ISP should stop dos attacks from happening to you.
Useful Threads
================================
www.firewall.cx/forum/2-basic-concepts/3...e-resource-page.html
- einklienermench
- Topic Author
- Offline
- New Member
Less
More
- Posts: 12
- Thank you received: 0
13 years 9 months ago #36583
by einklienermench
Replied by einklienermench on topic ISP
I honestly cant sit by and hope that my isp is doing its job well. Getting back to the topic, will not taking a chance and getting a 515e protect me from dos/ddos attacks?
13 years 9 months ago #36584
by JamieP
Jamie Parks
Network Engineer, UK
Replied by JamieP on topic Re: Cisco PIX515E Effectiveness Today.
to be honest, configuring your router with the correct ACL's will prevent against most DDoS attacks as well as a PIX.
Im not to up on PIX's to be hoenst, but to my understanding, they dont do much in the way of traffic inspection ( i could be totally wrong here) assuming that is the case, it wont be able to identify a DDoS happening, so all you can do is block the traffic commonly associated with a DDoS (certain ICMP types, most UDP) but it wont be able to detect things like TCP Port exhaustion or flooding attacks.
Im not to up on PIX's to be hoenst, but to my understanding, they dont do much in the way of traffic inspection ( i could be totally wrong here) assuming that is the case, it wont be able to identify a DDoS happening, so all you can do is block the traffic commonly associated with a DDoS (certain ICMP types, most UDP) but it wont be able to detect things like TCP Port exhaustion or flooding attacks.
Jamie Parks
Network Engineer, UK
- einklienermench
- Topic Author
- Offline
- New Member
Less
More
- Posts: 12
- Thank you received: 0
13 years 9 months ago #36585
by einklienermench
Replied by einklienermench on topic Re: Cisco PIX515E Effectiveness Today.
So basically it would be a waste?, what about vpn?, can i configure the 2611xm/2651xm (not decided yet) to have a vpn channel so i can access it from my workplace?
Also What firewall can you recommend that will be able to provide good ddos/dos protection?, (i know for sure that the attacks will happen via dos/ddos on small botnets).
Also What firewall can you recommend that will be able to provide good ddos/dos protection?, (i know for sure that the attacks will happen via dos/ddos on small botnets).
Time to create page: 0.123 seconds