CCSP Self-Study : Cisco Secure PIX Firewall Advanced (CSPFA), 2/e
暫譯: CCSP 自學：Cisco Secure PIX 防火牆進階 (CSPFA)，第2版

Cisco authorized self-study book for CCSP 642-521 foundation learning

• Gain proficiency with new features of PIX Firewall version 6.3, including OSPF, 802.1Q VLANs, NAT-T, and more
• Learn the ins and outs of the PIX product family and its complete feature set
• Use the PIX Device Manager (PDM) 3.0 to configure and manage the PIX Firewall
• Use advanced techniques to control traffic on your network using ACLs (access control lists), content filtering, and object groups
• Improve security using PIX Firewall attack guards, intrusion detection, and shunning features
• Learn about techniques and security considerations for configuring OSPF on PIX Firewall version 6.3
• Configure scalable site-to-site and client remote access VPNs using the PIX Firewall version 6.3
• Configure high-availability solutions using stateful and LAN-based failover techniques
• Use logical interfaces and 802.1Q trunks to scale your PIX Firewall implementation
• Configure the PIX Firewall Services Module (FWSM)

The use of firewalls-devices residing at the network perimeter to protect against intrusion-is an essential building block to even the most basic security program. Cisco Systems has continued the support and development of the PIX OS to provide networks top-notch security while maintaining compatibility with the latest standards and protocols. Now offered in many models, the PIX Firewall is perfectly suited to meet the requirements of small offices (501 model), medium to large businesses (506E, 515E, and 525 models), and large enterprise and service provider customers (525 and 535 models and the Firewall Services Module). CCSP Self-Study: Cisco Secure PIX Firewall Advanced (CSPFA), Second Edition, offers in-depth configuration and deployment information for this popular and versatile firewall solution.

CCSP Self-Study: Cisco Secure PIX Firewall Advanced (CSPFA), Second Edition, teaches you the skills needed to configure and operate the PIX Firewall product family. Chapter overviews bring you quickly up to speed and help you get to work right away. Lab exercises and scenario-based solutions allow you to adapt configurations to your network for rapid implementation, helping you make the most of your PIX Firewall. Chapter-ending review questions test your knowledge. PIX Device Manager (PDM) configuration procedures are presented to complement extensive coverage of traditional CLI commands.

Whether you are looking for a reference guide on working with the various PIX Firewall models or seeking a study tool for the CSPFA 642-521 exam, CCSP Self-Study: Cisco Secure PIX Firewall Advanced (CSPFA), Second Edition, supports your effective use of the PIX Firewall.

CCSP Self-Study: Cisco Secure PIX Firewall Advanced (CSPFA), Second Edition, is part of a recommended learning path from Cisco Systems that can include simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. To find out more about instructor-led training, e-learning, and hands-on instruction offered by authorized Cisco Learning Partners worldwide, please visit www.cisco.com/go/authorizedtraining.

This volume is in the Certification Self-Study Series offered by Cisco Press. Books in this series provide officially developed training solutions to help networking professionals understand technology implementations and prepare for the Cisco Career Certifications examinations.

Table of Contents

I. INTRODUCTION AND OVERVIEW.

II. GETTING STARTED.

III. FIREWALL CONFIGURATION TOPICS.

IV. ADVANCED CONFIGURATION TOPICS.

V. VPN CONFIGURATION.

VI. PIX SYSTEM MANAGEMENT.

VII. SPECIAL TOPICS.