Ok, so, Cisco isn’t really that excited about web-configuration (at least for the Cisco Pix 501 firewall). This was back in 2002, so, I understand it was emerging technology… not. haha
Anyway, here’s some of the experience I’ve had with the PIX.
This guy has a great tutorial on Youtube: http://www.youtube.com/watch?v=YuDbHCZwzlM
I also discovered if you change the inside IP address of the PIX, it won’t allow http connections because the security isn’t set up to allow it (it remains at the old factory address). To fix it, run these commands:
- enable
- configure terminal
- http x.y.z.0 255.255.255.0 inside
- ie: 192.168.50.0 255.255.255.0 inside
- write mem
That should get the HTTP interface working. You will need to connect to the PIX using https.
Here’s a great link at Cisco about how to create a VPN using the PIX 501
http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a008009442e.shtml
Using TFTP: http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a008072142a.shtml
Command for TFTP:
hostname(config)#tftp-server inside 10.1.1.1 hostname(config)#configure net :configs/config1
Cisco Quick Start Guide: http://www.cisco.com.akadns.net/en/US/docs/security/pix/pix63/quick/guide/63_501qk.html
Another great help link: http://www.linuxhomenetworking.com/cisco-hn/dsl-pix.htm