Cisco PIX-515E Quick Start Manual
|
Cisco PIX-515E, 38 Opening a TAC Case Using the online TAC Case Open Tool is the fastest way to open P3 and P4 cases. (P3 and P4 cases are those in which your network is minimally impaired or for which you require product information.) After you describe your situation, the TAC Case Open Tool automatically recommends resources for an immediate solution. If your issue is not resolved using the recommended resources, your case will be assigned to a Cisco TAC engineer. The online TAC Case Open Tool is located at this URL: http://www.cisco.com/tac/caseopen For P1 or P2 cases (P1 and P2 cases are those in which your production network is down or severely degraded) or if you
Cisco PIX-515E, 39 9 Obtaining Additional Publications and Information Information about Cisco products, technologies, and network solutions is available from various online and printed sources. • The Cisco Product Catalog describes the networking products offered by Cisco Systems, as well as ordering and customer support services. Access the Cisco Product Catalog at this URL: http://www.cisco.com/en/US/doctypes/prod_series_index_listing_sitecopy.html • Cisco Press publishes a wide range of general networking, training and certification titles. Both new and experienced users will benefit
Cisco PIX-515E, 37 You can order Cisco documentation in these ways: • Registered Cisco.com users (Cisco direct customers) can order Cisco product documentation from the Networking Products MarketPlace: http://www.cisco.com/en/US/partner/ordering/index.shtml • Nonregistered Cisco.com users can order documentation through a local account representative by calling Cisco Systems Corporate Headquarters (California, USA) at 408 526-7208 or, elsewhere in North America, by calling 800 553-NETS (6387). 7 Documentation Feedback You can submit e-mail comments about technical documentation to [email protected]. You can submit comments by using the response card (if present) behind the front cover of your do
Cisco PIX-515E, 3 1 Check Items Included End User License and Software Warranty PIX 515E Getting Started Guide Safety and Compliance Guide PIX 515E PC terminal adapter (74-0495-01) Documentation Blue console cable (72-1259-01) Yellow Ethernet cable (72-1482-01) Cisco PIX Security Appliance Product CD DO NOT INSTALL INTERFACE CARDS WITH POWER APPLIED L in k F D X F D X 1 0 0 M b p s L in k 1 0 0 M b p s F A IL O V E R PIX-515E CONSOLE 10/100 ETHERNET 1 10/100 ETHERNET 0 Failover serial cable (74-1213-01) Mounting brackets (700-01170-02 AO SSI-3) 7 flathead screws (69-0123-01) 4 cap screws (69-0124-01) 4 spacers (69-0125-01) Rubber feet 97955 Power cable
Cisco PIX-515E, 14 j. Click the OK button. k. Click the Proceed button. Check the displayed configuration for accuracy. l. Click the Apply button to configure the PIX Firewall. Repeat the steps to configure interface PAT between the inside and outside interfaces. The procedure remains the same, except the interface on which the translation is required is now the outside interface and the Dynamic address pool should now indicate the interface PAT keywords. The configurations should display as shown below:
Cisco PIX-515E, 12 b. Right click in the gray area below the Manage Pools button and select Add. c. In the new window, select the inside interface. d. Enter the IP address of the client (10.10.10.10). e. Select 255.255.255.255 from the Mask drop-down menu. Note You can select the inside host by clicking on the Browse button. f. Select the DMZ interface on which the translation is required. g. Click the Dynamic radio button in the Translate Address to section. h. Select 200 from the Address Pools drop-down menu for the appropriate Pool ID. i. Click the OK butto
Cisco PIX-515E, 9 b. Click the Range radio button to enter the IP address range. c. Because the range of IP addresses for the DMZ interface is 30.30.30.50– 30.30.30.60, enter these values in the two fields. d. Enter a unique Pool ID (in this case, enter 200). e. Click the OK button to go back to the Manage Global Address Pools window. Note You can also select PAT or PAT using the IP address of the interface if there are limited IP addresses available for the DMZ interface. Because there are only two public IP addresses available, with one reserved for the DMZ server, all traffic initiated by the inside HTTP client exits the PIX 515E using the outside interface IP a
Cisco PIX-515E, 20 The configurations should display as shown below: The HTTP clients on the private and public networks can now securely access the DMZ web server. Site-to-Site VPN Configuration Site-to-site VPN (Virtual Private Networking) features provided by the PIX 515E enable businesses to securely extend their networks across low-cost public Internet connections to business partners and remote offices worldwide. A VPN connection allows you to send data from one location to another over a secure connection, or “tunnel,” by first strongly authenticating both ends of the connection, and then automatically encrypting all data sent between the two
Cisco PIX-515E, 11 Step 2 Configure Address Translations on Private Networks Network Address Translation (NAT) replaces the source IP addresses of network traffic traversing between two PIX interfaces. This translation prevents the private address spaces from being exposed on public networks and permits routing through the public networks. Port Address Translation (PAT) is an extension of the NAT function that allows several hosts on the private networks to map into a single IP address on the public network. PAT is essential for small and medium businesses that have a limited number of public IP addresses available to them. To c
28 Step 5 View and Enable VPN Commands If you enabled preview commands, you will see this page: To enable preview commands: a. In the main PDM page, select Options. b. Select Preferences and check the Preview commands before sending to firewall box. Check the configuration to ensure that all values are entered correctly. Click the Send button to enable PIX 1 for
Cisco PIX-515E, 29 Establishing Site-to-Site VPNs with other Cisco Products For information on configuring VPN between a PIX 515E and other products such as a Cisco router that runs Cisco IOS software, and Cisco VPN 3000 Concentrators, go to the following links: http://www.cisco.com/warp/customer/471/pix_router_dyn.html http://www.cisco.com/warp/public/471/ALTIGA_pix.html http://www.cisco.com/warp/public/110/39.html 5 Optional Maintenance and Upgrade Procedures Obtaining DES and 3DES/AES Encryption Licenses The PIX 515E requires a DES or 3DES/AES encryption license key to enable specific features that provide encryption technology, such as secure remote managemen
Cisco PIX-515E, 17 Step 4 Provide HTTP Access to the DMZ Web Server In addition to configuring address translations, you must configure the PIX 515E to allow the specific traffic types from the public networks. To configure access lists for HTTP traffic originating from any client on the Internet to the DMZ web server, complete the following: a. Click the Configuration button at the top of the PDM window. b. Select the Access rules tab. c. In the table, right click and select Add.
Cisco PIX-515E, 26 Step 4 Configure Internal Traffic This step is comprised of two windows: 1. Select network traffic on the local PIX 515E encrypted through the VPN tunnel. a. Select the Local Host/Network based on the IP Address, Name, or Group. Note Use the Browse button to select from preconfigured groups. Add or remove networks dynamically from the selected panel by clicking on the >> or << buttons respectively. Traffic from Network A (10.10.10.0) is encrypted by PIX 1 and transmitted through the VPN tunnel. b. Click the Next button to continue.
Cisco PIX-515E, 22 Step 2 Configure the VPN Peer a. Enter the Peer IP Address (PIX 2) and select an authentication key (for example,“CisCo”), which is shared for IPSec negotiations between both PIX 515E units. Note To configure PIX 2, enter the IP address for PIX 1 (1.1.1.1) and the same Pre-shared Key (CisCo). b. To use X.509 certificates for authentication, check the Certificate radio button and the applicable option for the peer identity, FQDN (Fully Qualified Domain Name) or IP Address. If the peer identity is its FQDN, enter the exact
Cisco PIX-515E, 35 Table 2 PIX 515E Real Panel LEDs LED Color Status Description 100 Mbps Green On 100-Mbps 100BaseTX communication. If the light is off, the port is using 10-Mbps data exchange. ACT Green Flashing Shows that data is passing on the network to which the connector is attached. LINK Green On Shows that the connection uses full-duplex data exchange where data is transmitted and received simultaneously. Off If this light is off, half duplex is in effect. 97784 DO NOT INSTALL INTERFACE CARDS WITH POWER APPLIED CONSOLE10/100 ETHERNET 0 ACT L
7 Step 1 Manage IP Pools for Network Translations For an inside HTTP client (10.10.10.10) to access the web server on the DMZ network (30.30.30.30), it is necessary to define an IP pool (30.30.30.50–30.30.30.60) for the DMZ interface. Similarly, an IP pool for the outside interface (209.165.156.10) is required for the inside HTTP client to communicate with any d
10 When the new window comes up: a. Select outside from the Interface drop-down menu. b. Click the Port Address Translation (PAT) using the IP address of the interface radio button. c. Assign the same Pool ID for this pool as in Step d above (200). d. Click the OK button. Once the pools are configured, confirm their values before applying the rules to the PIX 515E. Confirm the configu
Cisco PIX-515E, 21 PDM provides an easy-to-use VPN Wizard that can quickly guide you through the process of configuring a site-to-site VPN in five simple steps. The illustration below shows an example VPN tunnel between two PIX 515E, and will be referenced in the following steps. Step 1 Start the VPN Wizard Use PDM to configure PIX 1. In the main PDM page, select the VPN Wizard option from the Wizards drop-down menu. This opens the VPN Wizard page. At the first VPN Wizard page, do the following: a. Select the Site t
34 Step 3 Connect the inside, outside, or perimeter network cables to the interface ports. Starting from the top left, the connectors are Ethernet 2, Ethernet 3, Ethernet 4, and Ethernet 5. The maximum number of allowed interfaces is six with an unrestricted license. Note Do not add a single-port circuit board in the extra slot below the four-port circuit board because the maximum number of
Cisco PIX-515E, 27 2. Select traffic permitted from the remote PIX Firewall. a. In the second window, select VPN traffic for remote network configuration. For PIX 1, the remote network is Network B (20.20.20.0) so traffic encrypted from this tunnel is permitted through the tunnel. Note When configuring PIX 2, ensure that the values are correctly entered. The remote network for PIX 1 is the local network for PIX 2 and vice versa. b. Click the Finish button to complete the configuration.
Cisco PIX-515E, 30 Enter these commands and follow these steps to use the activation key: Restore the Default Configuration To restore your default configuration back to the factory-default values, enter the following CLI commands by completing the following steps: Command Description Step 1 show version Shows the PIX Firewall software version, hardware configuration, license key, and related uptime data. Step 2 configure terminal Starts configuration mode. Step 3 activation-key Updates the PIX Firewall activation key by replacing the activation-key-four-tuple with the activation key obtained with your new license. Activation-key-four-tuple is a four-element hexadecimal string with one spac
Cisco PIX-515E, 6 Step 4 To access the Startup Wizard, use the PC connected to the switch or hub and enter the URL https://192.168.1.1/startup.html into your Internet browser. Note Remember to add the “s” in “https” or the connection fails. HTTPS (HTTP over SSL) provides a secure connection between your browser and the PIX 515E. Step 5 Leave both the username and password boxes empty. Press Enter. Step 6 Select Yes to accept the certificates and follow the instructions in the Startup Wizard to set up your PIX 515E. For online Help, click the Help button at
Cisco PIX-515E, 32 Alternative Ways to Access the PIX 515E You can access the CLI for administration using the console port on the PIX Firewall. To do so, you must run a serial terminal emulator on a PC or workstation . Step 1 Connect the blue console cable so that you have a DB-9 connector on one end as required by the serial port for your computer, and the RJ-45 connector on the other end. Note Use the console port to connect to a computer to enter configuration commands. Locate the blue console cable from the accessory kit. The blue con
Cisco 7507 Network Hardware Quick start manual
7507 |
Cisco Catalyst 7500 Series Network Hardware Configuration manual
Catalyst 7500 Series |
Cisco TelePresence Server 7010 Network Hardware Installation manual
TelePresence Server 7010 |
Cisco ONS 15454 Series Network Hardware Troubleshooting manual
ONS 15454 Series |
Cisco PIX 501 - Security Appliance Network Hardware Quick start manual
PIX 501 - Security Appliance |
Cisco SCE8000 Network Hardware Installation and configuration manual
SCE8000 |
Cisco Nexus 7000 Series Network Hardware Installation instructions manual
Nexus 7000 Series |
Cisco ASA 5512-X Network Hardware Installation instructions manual
ASA 5512-X |
# | Manufacturer | Model | Document Type | File | Updated | Pages | Size |
---|---|---|---|---|---|---|---|
1 | Hitachi | DV 14DSFL | Handling instructions manual | hitachi/dv-14dsfl-JM2.pdf | 14 Mar 2024 | 68 | |
2 | HP | xw4400 | Operation & user’s manual | hp/xw4400-7U3.pdf | 22 Jan 2024 | 16 | |
3 | Electrolux | WA SL1 E 101 | Operation & user’s manual | electrolux/wa-sl1-e-101-74E.pdf | 21 Nov 2023 | 28 | 3.28 Mb |
4 | King Canada | KC-3003 | Service manual & parts list | king-canada/kc-3003-RL9.pdf | 28 Nov 2022 | 2 | |
5 | Insignia | NS-H2002-U | Operation & user’s manual | insignia/ns-h2002-u-SNP.pdf | 14 Jan 2024 | 2 | |
6 | Iridium | YB3 | Basic instruction manual | iridium/yb3-6BS.pdf | 26 Oct 2023 | 3 |
Barracuda
Barracuda CloudGen FirewallBarracuda NG Firewall F600 Revision C 1 / 8Barracuda NG Firewall F600 Revision Chttps://campus.barracuda.com/doc/41116441/F600 standard model .C10F600 sub-model .C20F600 sub-model .F10
…
CloudGen Firewall(8 pages) |
Cisco
Americas HeadquartersCisco Systems, Inc.170 West Tasman DriveSan Jose, CA 95134-1706 USAhttp://www.cisco.comTel: 408 526-4000800 553-NETS (6387)Fax: 408 527-0883Cisco 3200 Series Wireless MIC Software Configuration GuideJanuary 2009Text Part Number: OL-6415-04
…
C3201FESMIC-TP= - 3201 Fast EN Switch Mobile Interface Card Expansion Module(314 pages) |
Falcon
the drain line. A.Hang the bowl on the bracket and check tail pipe alignment, then remove the bowl and adjust the bracket as needed. Re-hang and re-check bowl alignment with Tail pipe should align with center of drain line. B. Mark anchor holes then remove bowl without moving hanger bracket. A.Find the drain nipple depth on the Tube B. Cut the tub …
F1000(2 pages) |
Tripp Lite
1Owner’s ManualSpine-and-Leaf Singlemode MPO/MTP Panels, 1UModels: N48LSS-16X16, N48LSS-32X321111 W. 35th Street, Chicago, IL 60609 USA • tripplite.com/supportCopyright © 2021 Tripp Lite. All rights reserved.Este manual está disponible en español en la página de Tripp Lite: tripplite.comCe manuel est disponible en français sur le site Web de Tripp L …
N48LSS-16X16(4 pages) |
Siemens
SINUMERIKSINUMERIK 840D slOperator panel front: OP 015 blackManualValid for: SINUMERIK 840D sl / 840DE sl control05/2019A5E35227814B ABFundamental safety instructions1Description2Mounting3Connecting4Networking5Service and maintenance6Technical data7Spare parts/accessories8
…
SINUMERIK 840DE SL(92 pages) |
ADS Technologies
API-550:PYRO A/V LinkHardwarePlease substitute the following sheet for pages 12-13 in the accompanying manual:4 Position Dip SwitchSwitch 1 - TV Format:Set this switch to match the television/video format for your country. Generally, North America, Japan and Taiwan are set to NTSC. Europe, Africa and Australia are set to PAL. See the back of the user guid …
API-550(4 pages) |
Elmo Document Camera HV-3000XGElmo Document Camera Instruction manual (File: elmo-hv-3000xg-instruction-manual-32, 24/01/2024) HV-3000XG, 32 |
Blaupunkt Speakers EMb 1200Blaupunkt EMb 1200 Speakers Service manual EMb 1200, 12 |
Epson Laptop 4SLC-33Epson 4SLC-33 Manual (Doc Type: Laptop Product support bulletin) 4SLC-33, 10 |
KitchenAid Battery Pack 5KCL12IBOBKitchenAid 5KCL12IBOB Battery Pack Manual 5KCL12IBOB, 2 |
Craftsman Trimmer 358.795800Trimmer PDF Operator's manual 358.795800, 39 |
Ferm Drill HDM1014Ferm Drill Original instructions manual (File: ferm-hdm1014-original-instructions-manual-104, Fri 10.2023) HDM1014, 104 |
Harbor Freight Tools Air Compressor 93271#5O1I5R 93271: Harbor Freight Tools Air Compressor Owner Documentation 93271, 11 |
Raritan Network Hardware DOMINION SX -Raritan Product Guide: DOMINION SX - PDF Quick setup manual - Z68BHQ DOMINION SX -, 4 |
Morphy Richards Other 70460 GRIMEBUSTER INSTANT STEAM CLEANERMorphy Richards Product User Guide: 70460 GRIMEBUSTER INSTANT STEAM CLEANER PDF Manual - 33567Z 70460 GRIMEBUSTER INSTANT STEAM CLEANER, 8 |
Honeywell Thermostat RTH7600Honeywell Product User Manual: RTH7600 PDF Quick installation manual - SP8UB8 RTH7600, 60 |
Craftsman Drill 973.111620User Manual: Craftsman 973.111620 (4L4KU6, Upd.13/08/2023) 973.111620, 14 |
Zte Telephone Accessories WF721Zte Telephone Accessories Operation & user’s manual (File: zte-wf721-operation-user-s-manual-22, 10.01.2024) WF721, 22 |