External Publication
Visit Post

PIX - Cisco Private Internet Exchange

CG1NETWORK December 26, 2025
Source

Firewall controls access between two or more networks.

Packet filtering

static filtering based on packet header information, using access control lists

A malicious user can discover which packets meet the firewall criteria

packets can get through by being fragmented

Complex access control lists are challenging to configure and maintain

Not all services can be packet-filtered

Proxy services

Proxy server looks at Layers 4-7, hides details of the protected network

session state, user authentication, authorization

A proxy server represents a single point of failure

high degree of performance overhead, not a scalable solution

Stateful packet filtering

maintains complete session state data in a stateful session flow table for TCP or UDP

contains contents of fields in packet headers (Source Address, Destination Address, Port, Sequence number)

PIX generated a “Connections object” in memory

functions with packets and connections (sessions), performs better than other methods

Cisco PIX Firewall features

  • Security appliances built for security, reliability, and robust performance
  • Adaptive Security Algorithm (ASA)
  • Engines to inspect layers 4-7
  • user-based authentication
  • Virtual Private Networking (VPNs)
  • web-based management with PDM, CWFMC, SSH, SNMP, SYSLOG
  • Resilient operations through stateful failover
  • Supports static and dynamic NAT
  • Supports port address translation (PAT)
  • Protections from common internet threats

PIX - Product RangeOverview of Cisco PIX firewallsCG1NETWORKCraig GarnhamPIX - Firewall EssentialsGetting started with the Cisco PIX firewallCG1NETWORKCraig GarnhamPIX - Translations and ConnectionsConfigure NAT and PAT on a Cisco PIX FirewallCG1NETWORKCraig GarnhamPIX - Access Control ListsConfigure ACLs on a Cisco PIX FirewallCG1NETWORKCraig GarnhamPIX - Object GroupsConfigure Object Groups on a Cisco PIX FirewallCG1NETWORKCraig GarnhamPIX - Protocol HandlingPIX Protocol Handling and Fixup commands.CG1NETWORKCraig GarnhamPIX - Intrusion Detection and ShunningIntrusion Detection features on PIX FirewallCG1NETWORKCraig GarnhamPIX - FailoverConfigure failover on Cisco PIX firewallCG1NETWORKCraig GarnhamPIX - RoutingConfigure static routes, RIP, and OSPF routing on a Cisco PIX firewallCG1NETWORKCraig GarnhamPIX - Site-to-Site VPNConfigure site to site VPN tunnel on a Cisco PIX FirewallCG1NETWORKCraig GarnhamPIX - EasyVPNConfigure Cisco EasyVPN on a PIX FirewallCG1NETWORKCraig Garnham

Discussion in the ATmosphere

Loading comments...