Cisco's PIX family firewalls and ASA Series adaptive security appliances combine comprehensive firewall, intrusion protection, and Virtual Private Network technologies in an affordable, one-box format. Both of these product lines have been superseded by Cisco's ASA 5500-X series of firewalls with Firepower Services. (See integration and troubleshooting support for Cisco AA 5500-X firewalls with Firepower Services.) Nevertheless, PIX and previous-generation ASA 5500 Series adaptive security appliances are extensively deployed and continue to provide small and mid-size companies a reliable security solution.

PIX and the original ASA 5500 firewalls deliver powerful client and program policy enforcement, mutlivector assault protection, and safe access features. The enhanced knowledge sharing of integrated protection features in a single platform provides users implementing these aggregated solutions the advantages of advanced security, reduced cost of ownership, and smaller maintenance costs.

Cisco PIX firewalls and the ASA 5500 product line combine with IOS Firewall, the FWSM for Catalyst 6500 family switches, and Cisco 7600 Series routers as parts of Cisco's flexible, self-contained firewall line. Engineered with a scalable, modular approach, every device is designed with a particular feature set to deliver better protection to different networking situations. These solutions can be individually deployed to protect specific facets of a network infrastructure, or can be combined for a systematic, protection-in-depth strategy based on the architecture leading practices described in the Cisco SAFE framework. Rounding out the modular firewall product line, Cisco provides a comprehensive security management offering, spanning Cisco security device and Cisco IOS Software security components and embedded device managers, to standalone management programs, helping to make sure that businesses can effectively manage their Cisco security solution investments.

Cisco PIX Firewall Appliances
PIX firewalls offer reliable user and application policy enforcement, multivector invasion defense, and secure connectivity services in affordable, easy-to-deploy modules. These purpose-built devices offer a wealth of integrated protection and connectivity capabilities including process-aware firewall features, Voice over IP (VoIP) and multimedia protection, robust site-to-site and remote-connectivity IPcec VPN networking, fault tolerance, intelligent networking services, and versatile administration solutions. The PIX firewall Appliance product line spans small plug-and-go desktop units for small and at home offices to modular high-bandwidth products with ROI for large business and ISP environments, Cisco PIX Security Appliance Series deliver high levels of protection, performance, and availability for networks of all sizes.

PIX Firewalls Consultants

Built upon a tested, purpose-built OS that delivers a wealth of security services, Cisco PIX firewall appliances provide excellent security and have been awarded Common Criteria Evaluation Assurance Level 4 status and ICSA Labs Firewall and IP Security (IPsec) qualification. PIX security appliances offer security for a wide range of Voice over IP and other mixed-media standards including H.323 Version 4, Session Initiation Protocol (SIP), Cisco Skinny Client Control Protocol, Real-Time Streaming Protocol (RTSP), and MGCP, helping businesses to safeguard installations of a wide range of contemporary and next-generation IP voice and video applications.

PIX firewall appliances offer a variety of configuration, monitoring, and analysis options, giving businesses the versatility to utilize the methods that best meet their requirements. Management options include common, policy-based administration tools, integrated web-based management, and support for remote-tracking standards like SNMP and syslog. The integrated Cisco Adaptive Security Device Manager (ASDM) system offers a powerful web-based management platform that significantly streamlines the deployment, ongoing configuration, and monitoring of a specific Cisco PIX firewall without the need of any additional software beyond a standard web browser and Java plug-in to be installed on an administrator's computer.

IT managers can furthermore remotely configure, track, and troubleshoot Cisco PIX firewalls using a command-line interface. Safe command-line interface (CLI) communication is available through a number of techniques including Secure Shell (SSHv2) Protocol, Telnet through IP Security, and out-of-band through a console port. Cisco PIX firewalls also have dependable automatic-update features, a collection advanced protected remote-administration options that make sure that firewall settings and software images are kept up to date.

Cisco Adaptive Security Appliances (ASA) 5500 Series Firewalls
Cisco ASA Firewalls are purpose-built devices that bring together advanced, industry-leading security and VPN services with a flexible design. The result is a powerful, versatile network security appliance better able to defend small and medium business and enterprise networks and, simultaneously, lower the total deployment and operations expenses formerly required for this high level of protection.

>Cisco ASA 5500 Series Firewalls Experts
Cisco ASA 5500 Series Firewalls build on technology behind the Cisco PIX 500 family Security Appliance, the Cisco IPS 4200 family sensor, and Cisco's VPN 3000 family concentrator. These solutions converge on the Cisco Adaptive Security Appliances Firewall family to offer a firewall that defends against a broad range of attacks. Cisco ASA 5500 Series Firewalls deliver program protection, local containment and control, and safe VPN functionality across the entire product line. This breadth of protection allows defense of any network section, including the most typical threat conduits like remote sites, LAN-attached inside users, and remote access Virtual Private Networks.

Cisco Adaptive Security Appliances (ASA) 5500 Series firewalls provide strong application protection through smart, application-aware inspection engines that examine network flows at Layers 4-7. The result is a better protected environment covering web, voice, and mobile wireless connectivity. To defend networks from application-layer attacks and to give organizations more policing of the programs and protocols utilized in their networks, Cisco's inspection engines incorporate extensive application and protocol knowledgebases and rely on protection enforcement solutions such as protocol anomaly detection and application and protocol state monitoring. Also incorporated are attack sensing and mitigation techniques such as application/protocol command filtering and content verification. Cisco ASA 5500 Series firewall inspection engines also deliver management of instant messaging and tunneling applications, allowing organizations to enforce usage policies and free up network bandwidth for crucial business processes.

While improving security, Cisco Adaptive Security Appliances (ASA) 5500 Series firewalls also decrease installation and operational costs. By providing broad VPN and protection functions, the Cisco ASA firewall can be a single device for a multitude of environments, enabling product standardization. The Cisco Adaptive Security Appliances 5500 Series firewall can be used as a converged threat-protection appliance at the datacenter by leveraging its access control, application inspection, and worm, virus, and other malware mitigation technologies. The Cisco Adaptive Security Appliances (ASA) 5500 Series firewall can also be deployed as a specialized remote connectivity device using its VPN capabilities. As an alternative, the Cisco Adaptive Security Appliances 5500 Series firewall operates equally well in the network interior for inter-office access control and to guard against malicious assaults inside workers may unknowingly introduce into the network. In small company and branch office networks, the Cisco Adaptive Security Appliances firewall serves as an all-in-one device providing comprehensive intrusion defense and VPN functionality while fitting within the budgets and performance models of such deployments.

This versatile single-device, many-solution design minimizes the total number of appliances that must be deployed and maintained while providing a common functional and management environment across all those installations. This approach streamlines the education of configuration, tracking, troubleshooting, and security staff. To further reduce operations expenses, Cisco Adaptive Security Appliances firewalls are also exceptionally network conscious, enabling them to insert gracefully into the network without disrupting legitimate traffic and applications.

How Progent Can Assist Your Business with Cisco PIX and ASA Security Appliances
Cisco's ASA Series firewalls and PIX security appliances provide a wealth of setup, monitoring, and analysis options which give you the flexibility to deploy these security appliances to align optimally with your business needs. Progent's CCIE certified network consultants can show you how to support your existing network infrastructure that includes Cisco ASA and/or PIX firewalls and that provides protection, fault tolerance, throughput, and recoverability. Progent's firewall experts can also help you to migrate to Cisco ASA 5500-X firewalls with Firepower Services.

Progent's GISA and CISSP-ISSP-qualified IS security professionals can help your business to develop a security policy that makes sense for your business and can configure your security appliance to support your security policies. Progent's risk evaluation professionals can assess the effectiveness of your existing firewall solution and audit the security of your whole information system network. Progentís Help Desk Call Center can deliver emergency online troubleshooting for Cisco products and offer quick access to a Cisco network engineer.

To find out more information about Progent's professional assistance for Cisco products, choose a topic:

If you wish to contact Progent about professional expertise for Cisco products, phone 1-800-993-9400 or visit Contact Progent.

© 2002- 2017 Progent Corporation. All rights reserved.