PIX

{LANG_NAVORIGIN} Firewall PIX

Cisco Pix: Logging and Beyond
After the implementation of your firewall and security policy, setting up the logging/monitoring of the traffic is the most important step. The logging/monitoring that is done now will help catch and analyze current traffic plus give the ability to trend and analyze any previous history. This document will present a "how to" on logging of a Cisco Pix Firewall version 6.1. It will show how to implement logging via a SYSLOG locally and remotely (VPN Solution). It will also discuss some of the logging that can be done with the Cisco Pix Device Manager (PDM) which is a graphical utility that is supported by Cisco Pix Firewall version 6.0 and above.

By Ben Carlsrud, 04/15/2004

The Installation and Configuration of a Cisco PIX Firewall with 3 Interfaces and a Stateful Failover
This paper is intended to guide the reader through the installation and configuration of a Cisco PIX firewall. The configuration consists of inside, outside, and a DMZ network. A fourth interface will be used to provide a high-availability stateful failover situation. In this paper I will be using a Cisco PIX Model 525 firewall running software version 6.2. I do not review licensing issues in this paper. My intended audience are those who know the basics of a firewall, and have general PC knowledge. I also assume that the reader knows some basic Cisco configuration commands. They should know what the user mode and privilege modes are and well as the configuration mode. They also should know the concepts behind routing, filtering, TCP/IP, subnetting, ports, and terminology of networking in general.

By Steve Textor, 04/05/2004

Using The Cisco Pix Device Manager
The complexity of the many services and features offered by the Cisco PIX firewall appliance can make configuration from the console a daunting task even for someone who is familiar with the Cisco IOS. Because a firewall is only as good as its configuration, security may suffer if the PIX is configured poorly due to a lack of skill with the command-line interface. Fortunately, Cisco has provided a GUI tool called the PIX Device Manager (PDM) that allows secure configuration, management, and monitoring from a browser. Despite the bad reputation of many vendors' past attempts to port command-line interfaces to graphical interfaces, Cisco PDM version 2.02 integrates most commands supported on the PIX very robustly. In addition to providing an effective tool to configure, manage, and monitor a PIX firewall, the Cisco PDM can improve security by making these tasks more understandable for the firewall administrator.

By Jason Holcomb, 04/05/2004

Long Distance Failover - High Availability using Cisco PIX Firewall
The purpose of this document is to provide information security professionals with an understanding of the requirements in implementing long distance failover using Cisco PIX Firewalls. This case study is based on a project that I completed, and covers the major phases of the project including design, implementation and review. The document presents a high level description of the LAN-based Failover design principles and the steps involved in implementing this solution. I have not attempted to present a micro configuration document or step-by-step training guide.

By Chris Ellem, 04/05/2004

Configuring IPSec on PIX
In this article, we will talk about the setup of a VPN (site-to-site) and using pre-shared keys.

By Daniel B. Cid, 03/10/2004

Introduction to the Cisco PIX Firewall
This is a high level overview of the Cisco PIX Firewall.

By Daniel B. Cid, 02/21/2004

Blocking Peer-to-Peer File Sharing Programs with the PIX Firewall
This document demonstrates how to (attempt to) block the most common peer-to-peer (P2P) file sharing programs with the PIX firewall. If the application cannot effectively be blocked with the PIX, Cisco IOS® Network-Based Application Recognition (NBAR) configurations are included that can be configured on any Cisco router between the source host and the Internet

By Unknown, 02/21/2004