Skip to main content

Securing a Pix Firewall

More
17 years 6 months ago #22069 by Smurf
Hi peeps,

I am wirting a document on best practicies on ensuring a Pix Firewall is secure. I was wondering if anyone had anything they would like to add to this in order for me to compile my document. Once completed i will see if Chris will post it somewhere on the site for everyone to view and hopefully use in ensuring their Pix Firewalls are nice and secure.

Any comments or links to resources also covering this would be very useful. I have already come up with a load of things such as;

Disabling Telnet and ensuring SSH is used
Disable SNMP Version 1 & 2 (although i have read that the Pix 7 doesn't support SNMP Version 3 and that its best to use 2c, i do see an option for disabling version 3 also which is interesting)
Fragguard
enable password & Passwd

And a few others which slip my mind.

Cheers

Wayne

Wayne Murphy
Firewall.cx Team Member
www.firewall.cx

Now working for a Security Company called Sec-1 Ltd in the UK, for any
Penetration Testing work visit www.sec-1.com or PM me for details.
More
17 years 6 months ago #22070 by naveenkollipara
Hi Wayne,

I hope the PIX bechmark document at the below location can be helpful,

www.cisecurity.org/bench_cisco.html

As this document is 2 years old, the new PIX OS releases (7.0 and above) might need additional modifications.

This is a good idea of sharing information and let me know if i can be of any help.

Thank You,
Naveen

Thanks & Regards,
Naveen Kollipara.
Time to create page: 0.113 seconds