VPN on SOHO network -Newbie

[waif]

I have a small static addressed (192.168.1.x) network with a T-1 line running through an Adtran TSU-120 CSU/DSU, then to a Cisco 1720 router, then through a Cisco PIX 506 and finally to the network itself.

Is all this necessary (i.e. do I need the router at all)? and what things would I need to learn to create a VPN so I could access the file server (192.168.1.1) on the network from a laptop over the internet?

Every cisco vpn example I've seen either creates the vpn using just the router (in which case how do I get past the firewall to the server), or uses just the PIX (in which case what needs to be done on the router side?)

 

[badbadzt]

In answer to your "do i need a router at all?"
Yes you do, as this provides the routing from your network to your service provider, the pix will not be able to do that.

From my experience, I believe all you would need to do is setup the vpn on your pix and the vpn client on your workstation. What are u planning to use? pptp or vpn client?

 

[waif]

That's a much more promising answer than what I was expecting.

I plan to use VPN Client.

So I'll install the vpn licensing on the pix and install the client software on a laptop and then I can ssh into the pix using the outside IP on the pix and from there access anything on the internal network? Sounds too easy to be true.

Do all the pix rules apply to the vpn tunnel or do I need to set additional restrictions to block access to internal network components other than the file server?