Chapter 5. Cisco Security Appliances and Applications

Cisco Secure PIX Firewall and Cisco Adaptive Security Appliance Firewall

A PIX firewall functions on a connection-based security policy, and logic is based on the Adaptive Security Algorithm (ASA). Every inbound packet is checked against the algorithm and against the connection-state information in memory.

The PIX firewall supports Network Address Translation (NAT) and Port Address Translation (PAT).

The outside interface on the PIX is untrusted, and the security level on that interface is set to 0; the inside, or trusted, interface is set to 100 by default.

The following CLI commands commonly configure the PIX firewall:

nameif hardware_id if_name security_level vlan_id: Names the inside ...

Get CCIE Security v3.0 Quick Reference now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.