CCSP-Cisco Certified Security Professional

Attacks on network systems can be divided into three types and three phases. The three types of attacks are reconnaissance, access, and denial of service (DoS). The first phase is defining the objective of the attack. The second phase, reconnaissance, ... [full story]

To protect your systems completely, you must first recognize who or what you’re protecting them from. What typically comes to mind when discussing network security is protecting the network from mysterious hackers operating from a dark room full of sophisticated ... [full story]

Chapter 23: Intrusion Detection System Overview Intrusion Detection System Overview In this chapter, you will learn to: Explain intrusion detection Identify the four types of security threats Identify the three types of attacks Understand the three phases of an attack Explain the difference between host-based and network-based ... [full story]

1.  Which one of the following statements is false about Cisco PIX Device Manager (PDM)? It’s a Java applet that resides in the PIX Flash It supports Windows (except 3.1 and 95), Sun UNIX, and Red Hat Linux It’s a wizards-based application used ... [full story]

This chapter looked at the Cisco PIX Device Manager (PDM) as a graphical interface tool to facilitate configuration and monitoring one or more PIX Firewalls. While particularly useful for those administrators who lack a solid knowledge of the PIX Firewall ... [full story]

If the PIX Firewall unit is currently running an OS versions 5.1.1 or later and has a DES or 3DES activation key, use the copy tftp flash command to download the latest software image from a TFTP server. The copy ... [full story]

If the PIX device is a newer unit without a floppy drive, perform the following steps. In this process, you type a series of one-word commands, followed by an IP address or a filename. Look at ... [full story]

If the PIX unit has a floppy drive, perform the following steps. A 3.5” floppy disk is required. It will be formatted and unreadable by DOS/Windows when done. Place the 3.5” disk in the floppy drive. Note: Trying to direct the ... [full story]

If this is the first time you’re performing password recovery on this device, use a web browser to go to http://www.cisco.com and do a search on PIX Firewall password recovery. One of the first documents will have a title like ... [full story]

Password recovery for a PIX Firewall is quite simple if you can get physical access to the device and know the version of the PIX OS. The actual steps depend on whether the unit has a floppy drive like the ... [full story]

Use the following commands to verify that failover configuration is correct. show failover Use the show failover command to verify the status of the connection and to determine which ... [full story]

PIX Firewall version 6.2 introduces support for LAN-based failover, eliminating the need for the Failover serial cable to connect the primary and secondary units. LAN-based failover overcomes the six-foot distance limitations of the Failover cable. A dedicated LAN interface and a ... [full story]

Before configuring, make certain the two PIX Firewall units are identical, as discussed earlier, and the standby unit is powered off. The steps to configure failover with a failover cable are as follows: Set the clock on the active PIX Firewall ... [full story]

Traditionally, the two PIX Firewall units are connected by a special high-speed serial cable when using cable-based failover, although a faster solution involves a dedicated Ethernet connection to a dedicated switch/hub (or VLAN) for LAN-based failover. When using stateful failover, ... [full story]

The firewall’s critical role in the network security design makes device failure of any kind a serious consideration. The failover feature allows an identical PIX firewall unit to provide redundancy if the primary unit fails. One unit is considered the ... [full story]

The Startup Wizard provides basic configuration, but many more advanced features and services can be configured by working on the PDM tabbed pages and using the menus. To a great extent, exploration and experimentation ... [full story]

The PDM Startup Wizard is a good place to begin configuring a new or erased PIX Firewall. Using the PIX setup command, followed by the Startup Wizard, provides the basic requirements needed to implement a network security policy for the ... [full story]

Once the minimum required PIX configuration is in place and the web browser is set up to be both Java-enabled and support HTTPS (HTTP over SSL), use the following commands to launch PDM: Use a web browser on the workstation designated ... [full story]

If the process of using TFTP is unfamiliar to you, it’s covered in detail in the “Password Recovery” and “Upgrading” sections at the end of this chapter. The following limited commands assume the PIX is configured to function in a ... [full story]

If the PIX Firewall unit shipped with PIX Firewall software Version 6.2 or higher, PDM v2.1 is already installed in the Flash memory. Otherwise, the following steps should be taken before you install PDM v2.1: When performing an upgrade, you must ... [full story]

If the PIX firewall was preinstalled with version 6.2 on any of the PIX 501, PIX 506/506e, PIX 515/515e, PIX 520, PIX 525, and PIX 535 platforms, then PDM 2.1 is already installed and supported. Several areas of concern need ... [full story]

The Cisco PIX Device Manager (PDM) is a browser-based configuration tool for configuring and monitoring the PIX Firewall. This is particularly useful for those administrators who lack a solid knowledge of the PIX Firewall command-line interface (CLI). By using a ... [full story]

Overview In this chapter, you will learn to: Understand the PDM overview Understand PDM operating requirements Prepare for PDM Use PDM to configure the PIX Firewall Make use of PDM to create a site-to-site VPN Use PDM to create a remote access VPN Use CiscoWorks Management Center for ... [full story]

Questions 1.  Which two of the following are PIX Firewall IPSec implementations? Remote access Host-to-host Site-to-site Lock and key 2.  Which IPSec mode runs between two security gateways, such as PIX Firewall units? Remote access Transport Tunnel VPN Free Client 3.  Which command enables IKE on a PIX Firewall? IKE enable ... [full story]

This chapter looked at using the PIX Firewall with various VPN implementations. The basic tasks and steps of configuring VPNs on the firewall aren’t significantly different than working with router VPNs, although the command syntax is unique. Remember, basic VPN terms ... [full story]

Point-to-Point Protocol over Ethernet (PPPoE) incorporates two widely used and understood standards: PPP and Ethernet. The PPPoE specification connects hosts on an Ethernet to the Internet through a common broadband medium, such as DSL line, cable modem, or wireless device. ... [full story]

The Cisco Secure PIX Firewall support of the IETF IPSec standard allows an organization to scale its VPNs with much lower administrative costs. The IPSec use of public digital keys administered by a CA, a third-party vendor that registers public ... [full story]

The PIX Firewall OS version 6.2 introduced the use of the PIX unit as an Easy VPN Remote device (client) when connecting to any Easy VPN Server, such as a Cisco VPN 3000 Concentrator, another PIX Firewall, or in later ... [full story]

The next major task is to configure the IPSec parameters you determined in Task 1. This task consists of five basic configuration steps that define IPSec SA parameters between peers and the set global IPSec values. The steps are as ... [full story]

The second major task in configuring the PIX Firewall is to configure the IKE parameters developed in Task 1. This task involves several steps to make sure IKE can establish secure channels to the appropriate IPSec peers. Only after this ... [full story]

This task consists of several steps to determine IKE and IPSec policies, ensure the network works before encryption, and ensure the PIX Firewall can support IPSec. Successful implementation of an IPSec network requires advance preparation before beginning configuration of individual ... [full story]

Configuring IPSec has four major tasks, which are Task 1: Prepare to configure VPN support. Task 2: Configure IKE parameters. Task 3: Configure IPSec parameters. Task 4: Test and verify VPN configuration. Each of these tasks requires several steps. The following sections look at each ... [full story]