Cisco PIX 501 Firewall

Ok, so, Cisco isn’t really that excited about web-configuration (at least for the Cisco Pix 501 firewall).  This was back in 2002, so, I understand it was emerging technology… not.  haha

Anyway, here’s some of the experience I’ve had with the PIX.

This guy has a great tutorial on Youtube:  http://www.youtube.com/watch?v=YuDbHCZwzlM

I also discovered if you change the inside IP address of the PIX, it won’t allow http connections because the security isn’t set up to allow it (it remains at the old factory address).  To fix it, run these commands:

• enable
• configure terminal
• http x.y.z.0 255.255.255.0 inside
  • ie:  192.168.50.0 255.255.255.0 inside
• write mem

That should get the HTTP interface working.  You will need to connect to the PIX using https.

Here’s a great link at Cisco about how to create a VPN using the PIX 501

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a008009442e.shtml

Using TFTP:  http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a008072142a.shtml

Command for TFTP:

hostname(config)#tftp-server inside 10.1.1.1

hostname(config)#configure net :configs/config1

Cisco Quick Start Guide:  http://www.cisco.com.akadns.net/en/US/docs/security/pix/pix63/quick/guide/63_501qk.html

Another great help link:  http://www.linuxhomenetworking.com/cisco-hn/dsl-pix.htm