Cisco PIX firewalls and ASA Series firewalls integrate comprehensive firewall, intrusion defense, and Virtual Private Network features in an affordable, one-box format. Both product series offer robust user and program policy enforcement, mutlivector assault protection, and safe access features. The increased knowledge sharing of consolidated protection features in a stand-alone package offers customers deploying these integrated solutions the advanced of enhanced protection, lower cost of ownership (COI), and less operational costs.

Cisco PIX firewalls and the ASA 5500 product line combine with IOS Firewall, the Firewall Services Module for Catalyst 6500 switches, and Cisco 7600 Series routers as parts of Cisco's versatile, integrated firewall solutions. Engineered with an expandable, building-block platform, each device is designed with a particular array of options to provide better security to different network situations. These solutions can be individually installed to secure specific areas of a connectivity environment, or can be grouped for a layered, defense-in-depth strategy following the design best practices outlined in Cisco's SAFE framework. Completing the modular firewall solutions, Cisco provides a comprehensive security management portfolio, spanning Cisco security device and Cisco IOS Software security components and built-in device controllers, to self-contained management applications, helping to make sure that businesses can effectively use their Cisco protection solution purchases.

Cisco PIX Firewall Appliances
The top-selling PIX firewall appliances offer robust policy support, multi-source invasion defense, and secure connectivity features in economical, easy-to-deploy solutions. These specialized devices provide a wealth of integrated security and networking capabilities such as state-of-the=art process-aware firewall services, industry-leading Voice over IP (VoIP) and multimedia protection, robust multi-location and remote-connectivity IP Security Virtual Private Network connectivity, excellent resiliency, smart networking services, and versatile administration options. The Cisco PIX Security Appliance Series family ranges from compact plug-and-play desktop units for small and home offices to stackable high-bandwidth appliances with superior investment protection for large business and service-provider environments, Cisco PIX Security Appliance Series provide high levels of security, performance, and reliability for networks of all sizes.

Cisco PIX security appliances offer a variety of configuration, tracking, and troubleshooting options, giving businesses the flexibility to use the techniques that best meet their requirements. Administrative solutions cover the gamut from centralized, policy-based administration tools to integrated Web-accessible administration to support for remote-tracking standards like SNMP and syslog. The integrated ASDM interface offers a powerful Web-accessible management platform that greatly simplifies the deployment, ongoing modification, and tracking of a single PIX firewall appliance without the need of any additional utility other than a standard Web browser and Java applet to be running on an administrator's PC. IT managers can also remotely set up, monitor, and troubleshoot Cisco PIX security appliances using a command-line interface (CLI). Secure command-line interface (CLI) access is possible using several techniques, including SSHv2 Protocol, Telnet through IPSec, and out-of-band via a console port. Cisco PIX security appliances also include robust auto-update features, a set of revolutionary secure remote-administration options that ensure security settings and software images are always up to date. In addition, Cisco PIX firewall appliances are supported by several configuration and tracking utilities available from Cisco Architecture for Voice, Video and Integrated Data partners.

Cisco Adaptive Security Appliances (ASA) 5500 Series Firewalls
Cisco Adaptive Security Appliances 5500 Series Firewalls are purpose-built devices that incorporate market-proven, industry-leading protection and Virtual Private Network services plus a new generation, flexible design. The end product is a powerful, multifunction network security solution better able to protect small and medium business and enterprise networks and, at the same time, lower the overall installation and maintenance expenses associated with this unprecedented level of protection.

Cisco Adaptive Security Appliances (ASA) firewalls deliver a high-level of application security via smart, application-aware inspection processes that analyze network flows at Layers 4-7. This produces a more secure environment covering Web, voice, and mobile wireless connectivity. To defend environments against application-layer attacks and to offer organizations more policing of the programs and protocols utilized in their environments, these inspection engines integrate extensive application and protocol knowledge and rely on protection enforcement technologies that include protocol anomaly detection and state tracking. Also incorporated are assault detection and mitigation techniques such as application/protocol command filtering and content verification. Cisco ASA firewall inspection engines also deliver control over IM and peer-to-peer file sharing, enabling organizations to police usage policies and recover network bandwidth for vital business applications.

While increasing security, Cisco Adaptive Security Appliances 5500 Series firewalls also lower deployment and support costs. By offering broad VPN and protection functions, the Cisco ASA firewall can be a single device for a multitude of environments, allowing platform commonality. The Cisco ASA 5500 Series firewall can be used as a converged threat-protection appliance at a central location by leveraging its access control, application inspection, and malicious assault mitigation technologies. The Cisco Adaptive Security Appliances (ASA) 5500 Series firewall can also be used as a specialized remote access device using its Virtual Private Network features. As an Alternative, the Cisco Adaptive Security Appliances firewall operates capably in the network interior for interdepartmental access management and to defend against malicious assaults inside users might unknowingly release into the network. For small company and branch office networks, the Cisco Adaptive Security Appliances firewall serves as an all-in-one device offering complete threat defense and Virtual Private Network services while fitting within the cost structure and performance models of such deployments. This adaptive single-device, multiple-use design reduces the amount of platforms that must be installed and managed while offering a standard operating and administrative system throughout all installations. This approach simplifies the education of configuration, tracking, troubleshooting, and protection personnel. To further reduce maintenance costs, Cisco Adaptive Security Appliances (ASA) firewalls are also exceptionally network aware, enabling these devices to integrate seamlessly into the network without interfering with legitimate data flow and applications.

How Progent's Cisco Certified Experts Can Help You with Cisco PIX and ASA Firewalls
Cisco PIX family firewalls and Cisco ASA Series adaptive security appliances incorporate an array of setup, tracking, and analysis features which give you the ability to set up these security appliances to meet your company's requirements. Progent's CISM and CISSP authorized security professionals can show you how to create a security strategy appropriate for your situation and can set up your PIX or ASA firewall to support your security policy. Progent's CISA-qualified information security auditing engineers and GIAC-qualified IT security professionals can evaluate the strength of your current firewall deployment and audit the security of your entire information system environment. Progent can also analyze your PIX or ASA firewall either remotely or onsite, and can educate your in-house IT maintenance personnel to set up and maintain your PIX or ASA firewalls.

To find out additional details about Progent's consulting help for Cisco solutions, select a subject: