- Posts: 1390
- Thank you received: 0
Securing a Pix Firewall
17 years 5 months ago #22069
by Smurf
Wayne Murphy
Firewall.cx Team Member
www.firewall.cx
Now working for a Security Company called Sec-1 Ltd in the UK, for any
Penetration Testing work visit www.sec-1.com or PM me for details.
Securing a Pix Firewall was created by Smurf
Hi peeps,
I am wirting a document on best practicies on ensuring a Pix Firewall is secure. I was wondering if anyone had anything they would like to add to this in order for me to compile my document. Once completed i will see if Chris will post it somewhere on the site for everyone to view and hopefully use in ensuring their Pix Firewalls are nice and secure.
Any comments or links to resources also covering this would be very useful. I have already come up with a load of things such as;
Disabling Telnet and ensuring SSH is used
Disable SNMP Version 1 & 2 (although i have read that the Pix 7 doesn't support SNMP Version 3 and that its best to use 2c, i do see an option for disabling version 3 also which is interesting)
Fragguard
enable password & Passwd
And a few others which slip my mind.
Cheers
Wayne
I am wirting a document on best practicies on ensuring a Pix Firewall is secure. I was wondering if anyone had anything they would like to add to this in order for me to compile my document. Once completed i will see if Chris will post it somewhere on the site for everyone to view and hopefully use in ensuring their Pix Firewalls are nice and secure.
Any comments or links to resources also covering this would be very useful. I have already come up with a load of things such as;
Disabling Telnet and ensuring SSH is used
Disable SNMP Version 1 & 2 (although i have read that the Pix 7 doesn't support SNMP Version 3 and that its best to use 2c, i do see an option for disabling version 3 also which is interesting)
Fragguard
enable password & Passwd
And a few others which slip my mind.
Cheers
Wayne
Wayne Murphy
Firewall.cx Team Member
www.firewall.cx
Now working for a Security Company called Sec-1 Ltd in the UK, for any
Penetration Testing work visit www.sec-1.com or PM me for details.
- naveenkollipara
- Offline
- New Member
-
Less
More
- Posts: 7
- Thank you received: 0
17 years 5 months ago #22070
by naveenkollipara
Thanks & Regards,
Naveen Kollipara.
Replied by naveenkollipara on topic Re: Securing a Pix Firewall
Hi Wayne,
I hope the PIX bechmark document at the below location can be helpful,
www.cisecurity.org/bench_cisco.html
As this document is 2 years old, the new PIX OS releases (7.0 and above) might need additional modifications.
This is a good idea of sharing information and let me know if i can be of any help.
Thank You,
Naveen
I hope the PIX bechmark document at the below location can be helpful,
www.cisecurity.org/bench_cisco.html
As this document is 2 years old, the new PIX OS releases (7.0 and above) might need additional modifications.
This is a good idea of sharing information and let me know if i can be of any help.
Thank You,
Naveen
Thanks & Regards,
Naveen Kollipara.
Time to create page: 0.128 seconds