Summary
This chapter discussed Cisco industry-leading purpose-built firewall technology, highlighting the different
platforms: the PIX 500 series, the ASA 5500 series, and the integrated Firewall Services Module (FWSM) for the
Catalyst 6500 Series Switch and Cisco 7600 Series Router. The chapter focused on the features and solutions
available on the appliance software and module software. Each section examined the technology and how to
configure and effectively deploy it in the network environment.
The chapter was divided into two segments: discussion of features and configuration based on the appliance
software for PIX 500 and ASA 5500 series platforms, followed by the firewall module software for FWSM. The
chapter explained the core concepts, such as firewall modes, security contexts, inspection engines, various
types of NAT, controlling traffic flow and network access through the firewall, MPF, and designing highly
available, resilient networks.
References
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/index.html
http://www.cisco.com/en/US/products/ps6120/index.html
http://www.cisco.com/en/US/products/hw/modules/ps2706/ps4452/index.html
http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/conf_gd.
Pages:
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335