Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.
- Create BookmarkCreate Bookmark
- Create Note or TagCreate Note or Tag
- DownloadDownload
- PrintPrint
Part III: Telepresence System Design > TelePresence Firewall Design
Chapter 11. TelePresence Firewall Design
This chapter discusses the deployment of Cisco TelePresence within an enterprise that implements internal firewalling within the company. Chapter 14, “Intercompany TelePresence Design,” provides discussion about the deployment of external firewalling between companies. You implement internal firewalling within an organization for a number of reasons, including the following:
Access control within an enterprise campus: To provide access control for a corporate department, division, or service module within the campus network. This might be done for regulatory or internal security reasons.
Access control between enterprise campus locations: To provide NAT services between two campus locations. For example, when two companies merge, there might be a period of time where NAT is done because of an overlapping IP address space between the two sides of the company. You can also implement access control between the two campus locations if necessary.
Access control from branch locations to corporate campus sites: At WAN aggregation points within an enterprise organization to restrict inbound access from branch locations to certain protocols and resources within the corporate campus locations. You might do this to enhance the trust boundary between the branch locations and the corporate campus.
Access control within enterprise branch locations: To restrict access to certain devices within a branch. An example is the isolation of IP-based point-of-sale terminals within a store location.
