Header
Home | Set as homepage | Add to favorites
  Search the Site     » Advanced Search
Sections
Syndication


Blogroll:

||||| ALL Cisco-Network ARTICLES |||||  
CCIE Journey,
The CCIE Journey,

Home : CCSP-Cisco Certified Security Professional : IOS Firewall Management

IOS Firewall Management

Sep 11,2009 by alperen

small font medium font large font
image

You can administer the IOS Firewall features in two methods: the traditional command-line interface (CLI) and Cisco ConfigMaker.

Command Line Interface

For users who are familiar with the CLI, its primary advantage is that it can be used across virtually the entire product line. As with any complex skill, the more familiar you become with the CLI, the easier it becomes. Strengths of the CLI include

On the possible downside, the initial exposure to CLI can be intimidating and confusing. The additions and changes in commands with new releases can be a challenge to keep up with.


 Note 

A technician I met early in my career told me the Cisco CLI was the way “to keep the fools that shouldn’t be touching routers away.” While I’ve never found that in any Cisco document, I suspect the result might be on the mark, even if the intent is not.

ConfigMaker

Cisco ConfigMaker is an easy-to-use Microsoft Windows–based software tool designed to configure smaller network Cisco routers, switches, hubs, and other network devices. Advanced features include implementing security policies and managing the Cisco IOS Firewall quickly and efficiently with GUI-based management. Cisco ConfigMaker 2.1 and later versions include a Security Wizard for step-by-step guidance for quick configuration of security policy for the Cisco IOS Firewall. They also support NAT and IPSec configuration. Figure 6-4 shows the ConfigMaker interface.

Click To expand
Figure 6-4: Cisco ConfigMaker tool for network design and implementation

ConfigMaker prompts, wizards, and help screens guide users through the setup process. Online WAN configuration worksheets list important information the network administrator must obtain from the Internet service provider (ISP) or WAN service provider before configuring the devices. The program includes a multimedia movie tutorial.

Configurations can be downloaded or uploaded to the appropriate devices from a standalone PC or over the network.

Configuration wizards include the following:

Task wizards

Prompt user through processes and for key information.

AutoDetect Device Wizard

Can automatically detect and identify the configuration of any supported Cisco device on the network and any WAN or voice interfaces installed in a modular router.

Address Network Wizard

Quick-and-easy completion of complex network addressing procedures by using supplied address ranges and assigning the addresses to selected devices or the entire network.

Security Wizard

Enable policy-based configurations for efficient setup of the Cisco IOS Firewall feature set for Cisco 1600 and 2500 series routers.

Deliver Configuration Wizard

Once the configuration is complete, the wizard can automatically download it through the console port or over the network.

ConfigMaker supports routers up through the 4000 series, but little or no support exists for the Catalyst switches.

To download ConfigMaker, go to the Cisco articles web site, www.ciscoarticles.com , or do a search for ConfigMaker. No CCO account is required, but you’re asked to supply some information before downloading.


 STUDY TIP 

For those of you attempting to certify without access to devices, look at this product, which will at least challenge and assist you in working with many of the technologies covered in the exams.



178 times read

Related news
» Scale PIX Firewall VPNs
by alperen posted on Feb 10,2010
» VPN Concentrator User Interfaces and Startup
by alperen posted on Nov 14,2009
» Using the PDM Startup Wizard
by alperen posted on Feb 11,2010
» Concentrator Manager Quick Configuration
by alperen posted on Nov 14,2009
» Introduction to Cisco IOS Firewall
by alperen posted on Sep 10,2009
Did you enjoy this article?
1 2 3 4 5
(total 0 votes)

comment Comments (0 posted) 

More Top News
CCSP-Cisco Certified Security Professional
arrow Cisco SAFE Implementation
arrow Preparation Documents
arrow Exam Topics
arrow Skills Required for the Exam
arrow Cisco SAFE Implementation Questions and Answers
arrow Access Control Lists Cisco
arrow Access List Basics
arrow Standard Access Lists
arrow Verifying ACLs
arrow Extended Access Lists
arrow TCP Access Lists
arrow UDP Access Lists
arrow ICMP Access Lists
arrow Named Access Lists
arrow Signature and Alarm Management Review
arrow Signature and Alarm Management Review Questions and Answers
arrow Event Viewer
arrow Managing Alarms
arrow Event Viewer Customization
arrow Preference Settings
arrow Sensor Installation
arrow Connecting to Your Network Sensor Appliance
arrow Sensor Bootstrap
arrow Sensor Installation and Configuration Review
arrow Sensor Installation and Configuration Questions and Answers
arrow Signature and Alarm Management
arrow CIDS Signatures
arrow Signature Series
arrow Signature Implementations
arrow Signature Classes
arrow Signature Types
arrow Signature Severity
Most Popular
Most Commented
Featured Author

admin

image
<| Cisco Articles | Maximum Learning | All Cisco-Network Study Notes | Privacy Policy |>
If you think you own the material being used without permission, contact alperenmad[at]hotmail.com. material will be removed from the site.