Home > Articles > Cisco Certification > CCNP Security / CCSP > Getting Started with the Cisco PIX Firewall

Getting Started with the Cisco PIX Firewall

Contents

  1. Foundation Topics
  2. Foundation Summary
  3. Q&A

Chapter Description

This sample chapter covers exam topics for the Secure PIX Firewall Advanced Exam (CSPFA 9E0-511) including user interface, configuring the PIX Firewall, time setting and NTP support, and DHCP server configuration.

Foundation Summary

Table 6-11 provides a quick reference to the commands needed to configure the Cisco PIX Firewall, time server and NTP support, and the DNS server.

Table 6-11 Command Reference

Command

Description

enable

Specifies to activate a process, mode, or privilege level.

interface

Identifies the speed and duplex settings of the network interface boards.

nameif

Lets you name interfaces and assign security levels.

ip address

Identifies addresses for network interfaces and lets you set how many times the PIX Firewall polls for DHCP information.

nat

Lets you associate a network with a pool of global IP addresses.

global

Defines a pool of global addresses. The global addresses in the pool provide an IP address for each outbound connection and for inbound connections resulting from outbound connections. Ensure that associated nat and global command statements have the same nat_id.

route

Used to enter a default or static route for an interface.

write terminal

Displays the current configuration on the terminal.

rip

Enables IP routing table updates from received RIP broadcasts.

dhcpd

Controls the DHCP server feature.

ntp server

Synchronizes the PIX Firewall with the network time server that is specified and authenticates according to the authentication options that are set.

clock

Lets you specify the time, month, day, and year for use with time-stamped syslog messages.