All Cisco-Network Study Notes: Configuring the PIX Firewall Using PDM

Configuring the PIX Firewall Using PDM

Configuring a PIX firewall, whether through PDM, the PIX CLI, or through

Cisco Secure Action Manager (CSPM), should be the abstruse appliance of a

well-developed and well-understood aegis policy. Moreover, the rules implemented

on the PIX firewall generally represent the administration of the security

policy. Afore configuring any aegis device, the firewall ambassador should

be acquainted of the specific aegis action of the organization. A adamant and comprehensive

technical aegis band-aid is added acceptable with such an approach.

After auspiciously installing PDM, affix to the PIX firewall via PDM and

begin configuring a specific aegis action adapted for your company. In this

section, we altercate all the capital tabs accessible in PDM and assignment through several

exercises archetypal of PIX firewall implementations, such as the following:

Using the Startup Wizard

Configuring firewall arrangement properties

Implementing NAT

www.syngress.com

Security Action Development

A acceptable aegis convenance aural any alignment begins with a sound

and well-developed aegis framework. It is from this framework that

policies, standards, guidelines, and accepted operating procedures flow.

Organizations should acutely ascertain this framework afore embarking on

device agreement to ensure a compatible and anticipated security

stance.

Designing & Planning…

PIX Accessory Manager • Affiliate 9 467

Allowing entering cartage from alien sources

Configuring VPNs

Each of these contest is discussed in the adapted sections in the chapter.

The contest are based on the archetype arrangement architectonics apparent in Figure 9.7.

Our Archetype Arrangement Architecture

Internet

www.securecorp.com

Internal Desktop

Clients

mail.securecorp.com

External Address: 192.10.10.2

Internal Address: 172.20.1.1

Internal Address: 172.20.1.25

Internal Address: 172.20.1.80

Internal Addresses:

172.20.2.254

Internal Address: 192.10.10.1

Location: Washington, DC

pix1.securecorp.com

rtr1.securecorp.com

Internal Address: 134.20.20.1

Location: Prague

rtr2.securecorp.com

External Address: 134.20.20.2

Internal Address: 172.16.1.1

pix2.securecorp.com

External Remote

VPN Clients

Internal Desktop

Clients

Internal Addresses:

172.16.2.254

172.16.2.1