I work in a company with a cisco based network. Everyone has public ip addresses. We also run a couple of web servers, mail server, and dns servers. We connect to the internet through a border router and any restrictions are applied with ACLs in it.
My question is: there is a pix firewall that is not used. Are there any benefits by using it just before the border router. We won't be using NAT or vpn, we only need to be able to apply restrictions on ports, hosts etc. What are the pro and cons of using a PIX in a situation like this.