Features, Limitations, and Requirements
PDM facilitates about all authoritative functionality accessible in the PIX firewall
CLI.This includes the adeptness to adapt access,AAA, and clarify rules on the
firewall as able-bodied as apparatus and ascendancy NAT. PDM additionally gives firewall
www.syngress.com
www.syngress.com
administrators diminutive ascendancy of authoritative functionality such as logging,
IDS configuration, and user annual aliment while accouterment acumen into
current achievement through the abundant PDM graphical ecology functionality.
A abundance of achievement metrics and real-time statistics can calmly be generated
and beheld application PDM.
PDM includes able wizards such as the Bureaucracy Wizard and the VPN
Wizard. Both accoutrement adviser firewall administrators through the generally circuitous configuration
of avant-garde appearance such as auto-update functionality and DHCP
server bureaucracy or site-to-site and software applicant VPN configuration. PIX Device
Manager 2.1 additionally supports article grouping, bidirectional NAT, LAN failover,
several fixup configurations,Turbo ACLs, and command authorization. For information
regarding these and abounding added accurate appearance in the PDM interface,
refer to the PDM 2.1 Release Notes at www.cisco.com/univercd/cc/td/doc/
product/iaabu/pix/pdm/v_21/pdmrn21/pdmrn21.htm.
Cisco created PDM application Java applets anchored in the PDM angel stored
on the PIX firewall.These active applets are downloaded anon from PIX flash
memory to facilitate PIX administering chargeless of bulky client-side software.
Therefore, no appropriate applicant software added than a adjustable Web browser is
required for the PDM client. However, there are several prerequisites for PDM to
run successfully.These hardware, software, and client-side requirements for PDM
are declared in the afterward sections.
So far, we accept performed around all administering on the PIX firewall
through the command-line interface, or CLI. In accession to the CLI for configuration
and monitoring, the PIX firewall additionally supports a graphical user interface
(GUI). Application PIX Device Manager (PDM), an ambassador can use a Web
browser to install, configure, and advance the PIX firewall.
PDM is a Java-based GUI acclimated to administer the Cisco PIX firewall. PDM is a
software angel that runs from beam anamnesis on the PIX firewall, enabling
administrative admission via a Secure Sockets Layer (SSL) encrypted HTTPS session.
PDM replaces PIX Firewall Manager (PFM) software, which was accessible in PIX
software adaptation 5.3(x) and some beforehand versions. PDM allows firewall administrators
to assignment from a array of accustomed workstations configured with a
compliant browser and includes about all PIX CLI functionality. For example,
using PDM, administrators can add, modify, and annul firewall aphorism sets, configure
network abode adaptation (NAT), or set up a VPN.
In accession to altering PIX configurations, PDM facilitates administrative
monitoring of the PIX firewall through able blueprint and table displays for
near-real-time acumen into PIX performance.
In this chapter, you will apprentice how to install and accredit PDM, specifically
version 2.1.You will again apprentice how to use PDM’s GUI to configure and
monitor the PIX firewall.
NOTE
PDM is acclimated for administering of a distinct firewall. Cisco Secure
Policy Manager (CSPM) is a Cisco artefact that supports centralized
management of assorted Cisco aegis devices, including firewalls,
VPNs, and IDS sensors. A altercation of CSPM is above the scope
of this book. You can get added advice about the software at
www.cisco.com/warp/public/cc/pd/sqsw/sqppmn.