Configuring a Cisco Security Appliance
Eight important commands are used to produce a basic working configuration for a Security
Appliance:
■ interface
■ security-level
■ nameif
■ ip address
■ nat
■ nat-control
NOTE PIX version 6.2 and later, as well as ASA Security Appliance version 7.0 and later,
supports 16 privilege levels. This feature enables you to assign Cisco Security Appliance
commands to one of the 16 levels. These privilege levels can also be assigned to users. This
is discussed in detail in Chapter 4, “System Management/ Maintenance.”
142 Chapter 6: Getting Started with the Cisco Security Appliance Family of Firewalls
■ global
■ route
Before you use these commands, it can prove very useful to draw a diagram of your Cisco
Security Appliance with the different security levels, interfaces, and Internet Protocol (IP)
addresses. Figure 6-1 shows one such diagram that is used for the discussion in this chapter.