Table Of Contents
Cisco PIX® Device Manager
OverviewCisco PIX Device Manager (PDM) offers enterprise and service provider users the features they need to easily manage Cisco PIX Firewalls. It features an intuitive graphical user interface (GUI) to help you set up and configure your PIX Firewall. In addition, a wide range of informative, real-time, and historical reports provide critical insight into usage trends, performance baselines, and security events. Secure communication allows efficient management of local or remote Cisco PIX Firewalls. In short, PDM simplifies Internet security, making it a cost-effective tool that enhances productivity and network security saving both time and money.
Intuitive User InterfaceMany security vulnerabilities are caused by poor configuration. Consequently, implementing security policy must be as straightforward as possible. PDM includes wizards, point-and-click configuration, and online help to simplify administration. Security professionals can focus on enforcing security and defining policy, rather than on mastering the tools required to get the job done.
WizardPIX Device Manager offers a helpful wizard for setting up a new PIX deployment. With just a few steps, the PDM Setup Wizard enables you to efficiently create a basic configuration that allows packets to flow through the PIX Firewall from the inside network to the outside network securely. You can also perform optional tasks such as configuring rules to allow outside access to your Web or mail server. After you complete initial setup, intuitive pull-down menus and icons enable you to easily add and delete services and rules, as well as access other feature settings.
Graphical User InterfaceUsing Cisco PIX Device Manager, you can easily configure, manage, and monitor security policies across your network. PDM's Graphical User Interface (GUI) provides a familiar tabbed layout with one-click access to common tasks. The point-and-click design is simple for even novice users, reducing ramp-up time. The result is cost savings through significant reductions in management time and maximum efficiency in network security management.
Monitoring and ReportingPDM offers robust reporting and monitoring tools that provide you with real-time and historical insights. At a glance, administrators can view graphical reports summarizing network activity, resource utilization, and event logs, allowing performance and trend analysis. PDM's logging and notification features allow security staff to detect and interrupt suspicious activity.
Graphing ToolsCisco PDM monitoring tools create graphical summary reports showing real-time usage, security events, and network activity. Data from each graph can be displayed in increments you select (10 second snapshot, last 10 minutes, last 60 minutes, last 12 hours, last 5 days) and refreshed at user-defined intervals. The ability to view multiple graphs simultaneously allows you to do side-by-side analysis.
System graphs: Provide detailed status information on the PIX Firewall, including blocks used and free, current memory utilization, and CPU utilization.
Connection graphs: Track real-time session and performance monitoring data for connections, address translations, authentication, authorization, and accounting (AAA) transactions, URL filtering requests, and more on a per-second basis. Stay fully informed of your network connections and activities, without being overwhelmed.
Intrusion Detection System (IDS): 16 different graphs are available to display potentially malicious activity. IDS-based signature information displays activity such as IP attacks, Internet Control Message Protocol (ICMP) requests, and Portmap requests.
Interface graphs: Provide real-time monitoring of your bandwidth usage for each interface. Bandwidth usage is displayed for incoming and outgoing communications. You can view packet rates, counts, and errors, as well as bit, byte, and collision counts, and more.
Syslog ViewerCisco PDM's integrated syslog viewer allows you to view specific syslog message types by selecting the desired logging level.
Embedded ArchitectureThe embedded design of PDM allows customers to manage their Cisco PIX firewalls from almost any computer, regardless of their operating system, - which is a critical requirement for many of today's e-businesses. Similarly, PDM provides a consistent experience by working with most of today's popular browsers, including Microsoft Internet Explorer and Netscape Navigator. With PDM, there is no application to install and no plug-in required. An authorized network administrator can securely manage and monitor their PIX firewalls from a Web browser.
Secure CommunicationCisco PDM supports the Secure Socket Layer (SSL) protocol to provide high-grade encryption from the PIX Firewall to a browser. Your PIX Firewall, combined with 56-bit Data Encryption Standard (DES) or the more secure 168-bit Triple DES (3DES), ensures that communication with remote PIX Firewalls is secure.
Similar to Telnet usage, PDM enables you to protect access with a valid username and password. This can either be on the PIX Firewall or through an authentication server.
LicensingCisco PIX Device Manager is included as part of Cisco PIX operating systems version 6.0 and higher. A separate license for PDM is not required. A DES or 3DES license is required, as PDM only supports encrypted communication. If your PIX is not currently encryption enabled you can request a free DES activation key by completing the following form:
3DES keys are available as part of a feature license upgrade.
PIX Firewall System Requirements
Platform: Cisco PIX Firewall 506, 515, 520, 525, or 535
Random Access Memory: 32 MB
Flash Memory: 16 MB (PIX Firewall 506 requires 8 MB)
SoftwarePIX Firewall operating system: Version 6.0 or higher
Encryption: DES or 3DES-enabled
User System Requirements
HardwareProcessor: 300 MHz, 500 MHz recommended
Random Access Memory: 128 MB, 192 MB recommended
Display Resolution: 800 x 600 pixels, 1024 x 768 pixels recommended
Display Colors: 256, 256 color recommended
Network ConnectionConnection speed: 56 Kbps, 128 Kbps recommended
Additional InformationFor more information about Cisco PIX Firewall, go to http://www.cisco.com/go/pix