Cisco pix firewall configuration for dcsl

1,150 views
953 views

Published on

CISCO PIX FIREWALL Configuration for DCSL

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
1,150
On SlideShare
0
From Embeds
0
Number of Embeds
14
Actions
Shares
0
Downloads
38
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Cisco pix firewall configuration for dcsl

  1. 1. CISCO PIX FIREWALL Configuration for DCSLThe PIX is a firewall appliance based on a hardened, specially builtoperating system, PIX OS, minimizing possible OS-specific security holes.The PIX has received ICSA Firewall and IPsec certification as well asCommon Criteria EAL4 evaluation status.PIX firewalls provide a wide range of security and networking services including:Network Address Translation (NAT) or Port Address Translation (PAT)content filtering (Java/ActiveX)URL filteringIPsec VPNsupport for leading X.509 PKI solutionsDHCP client/serverPPPoE supportadvanced security services for multimedia applications and protocols includingVoice over IP (VoIP), H.323, SIP, Skinny and Microsoft NetMeetingAAA (RADIUS/TACACS+) integration
  2. 2. CBasic rules to configure Cisco PIX firewall Cisco PIX firewall is a “hardware” firewall, a network layer firewall. Cisco PIX firewall series: 501, 506e, 515e, 525 and 535. Series used in the DCSL lab is 515e. http://www.router-switch.com/
  3. 3. Basic rules to configure Cisco PIX firewall(cont.) http://www.router-switch.com/
  4. 4. Basic rules to configure Cisco PIX firewall(cont.) DCSL provides 2-layer firewall protection. How to access PIX firewall – Access via Telnet port – Access via Console port http://www.router-switch.com/
  5. 5. Basic rules to configure Cisco PIX firewall(cont.) General capabilities of PIX 515e – Up to 6 Ethernet interfaces – 128,000 simultaneous connections – 170 Mbps clear text throughput – 11Mbps DES throughput Software: Cisco PIX firewall version 6.3(4) Network Address Translation VPN feature http://www.router-switch.com/
  6. 6. Basic rules to configure Cisco PIX firewall(cont.) Nameif command – nameif ethernet0 outside security0 – nameif ethernet1 inside security100 – nameif ethernet2 dmz security 80 Interface command – interface ethernet0 auto – interface ethenet1 100full Ip address command – ip address outside 192.168.9.4 255.255.255.0 – ip address inside 192.168.10.254 255.255.255.0 http://www.router-switch.com/
  7. 7. Basic rules to configure Cisco PIX firewall(cont.) Route command – route outside 0.0.0.0 0.0.0.0 192.168.9.254 1 – route outside 192.168.6.0 255.255.255.0 192.168.9.3 1 Static command – static (inside,outside) 192.168.10.0 192.168.10.0 netmask 255.255.255.0 Conduit command – conduit permit icmp 192.168.10.0 255.255.255.0 any – conduit permit udp host 192.168.6.21 eq 1645 host 192.168.10.251 http://www.router-switch.com/
  8. 8. Basic rules to configure Cisco PIX firewall(cont.) Access-list command – Access-list 101 deny tcp any any eq www Access-group command – Access-group 101 in interface inside Example of PIX configuration file http://www.router-switch.com/
  9. 9. The End NOTE: More Cisco and Cisco hardware tips, tutorials and Info you can visit:http://www.router-switch.com/Price-cisco-fi

×