Cisco PIX 501 Data Sheet - Page 4

Data Sheet, Product Features and Benefits, All contents are Copyright © 1992-2007 Cisco Systems - client software

Get Cisco PIX 501 - Security Appliance PDF manuals and user guides
UPC - 746320551470
View all Cisco PIX 501 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 4 highlights

Data Sheet Table 1. Product Features and Benefits Feature Benefit Enterprise-Class Security Reliable, purpose-built security appliance ● Uses a proprietary, hardened operating system that eliminates security risks associated with general purpose operating systems ● Combines Cisco product quality with no moving parts to provide a highly reliable security platform Stateful inspection firewall ● Provides perimeter network security to prevent unauthorized network access ● Uses state-of-the-art Cisco Adaptive Security Algorithm for robust stateful inspection firewall services ● Provides flexible access-control capabilities for over 100 predefined applications, services and protocols, with the ability to define custom applications and services ● Simplifies management of security policies by giving administrators the ability to create reusable network and service object groups which can be referenced by multiple security policies, thus simplifying initial policy definition and on-going policy maintenance Advanced application and protocol inspection ● Integrates over two dozen specialized inspection engines for protocols such as Hypertext Transfer Protocol (HTTP), File Transfer Protocol (FTP), Simple Mail Transfer Protocol (SMTP), Domain Name System (DNS), Simple Network Management Protocol (SNMP), SQL*Net, Network File System (NFS), H.323 Versions 1-4, Session Initiation Protocol (SIP), Cisco Skinny Client Control Protocol (SCCP), Real-Time Streaming Protocol (RTSP), Internet Locator Service (ILS), and many more Cisco Easy VPN Remote (hardware VPN client) ● Enables dramatically simplified VPN rollouts to small office/teleworker environments by eliminating the provisioning complexities of traditional site-to-site VPN deployments ● Downloads VPN policy dynamically from a Cisco Easy VPN Server upon connection, ensuring the latest corporate security policies are enforced ● Provides robust client-side VPN resiliency with support for up to 10 Cisco Easy VPN Servers with automatic failover, in addition to Dead Peer Detection (DPD) support ● Supports optional authentication of individual users behind a Cisco PIX Security Appliance through an easy-to-use, Web-based interface with support for standard and one-time passwords (including authentication tokens) ● Extends VPN reach into environments using NAT or PAT, via support of Internet Engineering Task Force (IETF) UDP-based draft standard for NAT traversal ● Supports both split and non-split tunneling environments ● Provides intelligent, transparent DNS proxy capabilities for access to both corporate and public DNS servers Cisco Easy VPN Server ● Provides remote access VPN concentrator services for up to 10 remote software or hardwarebased VPN clients ● Pushes VPN policy dynamically to Cisco Easy VPN Remote-enabled solutions (such as the Cisco VPN Client) upon connection, ensuring the latest corporate security policies are enforced ● Supports award-winning Cisco VPN Client on multiple platforms including Microsoft Windows 98/ME/NT/2000XP, Sun Solaris, Intel-based Linux distributions, and Apple Macintosh OS X (available separately) Site-to-site VPN ● Supports IKE and IPSec VPN industry standards ● Extends networks securely over the Internet by ensuring data privacy/integrity and strong authentication with remote networks ● Supports 56-bit DES, 168-bit 3DES, and up to 256-bit AES data encryption to ensure data privacy Intrusion prevention ● Provides protection from over 55 different types of popular network-based attacks ranging from malformed packet attacks to denial-of-service (DoS) attacks ● Integrates with Cisco Network Intrusion Detection System (IDS) sensors to identify and dynamically block/shun hostile network nodes Authentication, authorization, and accounting (AAA) support ● Integrates with popular AAA services via TACACS+ and RADIUS ● Provides tight integration with Cisco Secure Access Control Server (ACS) for user/administrator authentication, dynamic per-user/group policies, and administrator access privileges X.509 certificate and CRL support ● Supports SCEP-based enrollment with leading X.509 solutions from Baltimore, Entrust, Microsoft, and VeriSign Integration with leading third-party solutions ● Supports the broad range of Cisco AVVID (Architecture for Voice, Video and Integrated Data) partner solutions that provide URL filtering, content filtering, virus protection, scalable remote management, and more Integrated security lock slot ● Provides ability to physically secure the Cisco PIX 501 Security Appliance using a standard notebook security cable lock (lock not included) All contents are Copyright © 1992-2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information. Page 4 of 8

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
Data Sheet
All contents are Copyright © 1992–2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 4 of 8
Table 1.
Product Features and Benefits
Feature
Benefit
Enterprise-Class Security
Reliable, purpose-built
security appliance
Uses a proprietary, hardened operating system that eliminates security risks associated with
general purpose operating systems
Combines Cisco product quality with no moving parts to provide a highly reliable security
platform
Stateful inspection firewall
Provides perimeter network security to prevent unauthorized network access
Uses state-of-the-art Cisco Adaptive Security Algorithm for robust stateful inspection firewall
services
Provides flexible access-control capabilities for over 100 predefined applications, services and
protocols, with the ability to define custom applications and services
Simplifies management of security policies by giving administrators the ability to create re-
usable network and service object groups which can be referenced by multiple security
policies, thus simplifying initial policy definition and on-going policy maintenance
Advanced application and
protocol inspection
Integrates over two dozen specialized inspection engines for protocols such as Hypertext
Transfer Protocol (HTTP), File Transfer Protocol (FTP), Simple Mail Transfer Protocol
(SMTP), Domain Name System (DNS), Simple Network Management Protocol (SNMP),
SQL*Net, Network File System (NFS), H.323 Versions 1–4, Session Initiation Protocol (SIP),
Cisco Skinny Client Control Protocol (SCCP), Real-Time Streaming Protocol (RTSP), Internet
Locator Service (ILS), and many more
Cisco Easy VPN Remote
(hardware VPN client)
Enables dramatically simplified VPN rollouts to small office/teleworker environments by
eliminating the provisioning complexities of traditional site-to-site VPN deployments
Downloads VPN policy dynamically from a Cisco Easy VPN Server upon connection, ensuring
the latest corporate security policies are enforced
Provides robust client-side VPN resiliency with support for up to 10 Cisco Easy VPN Servers
with automatic failover, in addition to Dead Peer Detection (DPD) support
Supports optional authentication of individual users behind a Cisco PIX Security Appliance
through an easy-to-use, Web-based interface with support for standard and one-time
passwords (including authentication tokens)
Extends VPN reach into environments using NAT or PAT, via support of Internet Engineering
Task Force (IETF) UDP-based draft standard for NAT traversal
Supports both split and non-split tunneling environments
Provides intelligent, transparent DNS proxy capabilities for access to both corporate and
public DNS servers
Cisco Easy VPN Server
Provides remote access VPN concentrator services for up to 10 remote software or hardware-
based VPN clients
Pushes VPN policy dynamically to Cisco Easy VPN Remote-enabled solutions (such as the
Cisco VPN Client) upon connection, ensuring the latest corporate security policies are
enforced
Supports award-winning Cisco VPN Client on multiple platforms including Microsoft Windows
98/ME/NT/2000XP, Sun Solaris, Intel-based Linux distributions, and Apple Macintosh OS X
(available separately)
Site-to-site VPN
Supports IKE and IPSec VPN industry standards
Extends networks securely over the Internet by ensuring data privacy/integrity and strong
authentication with remote networks
Supports 56-bit DES, 168-bit 3DES, and up to 256-bit AES data encryption to ensure data
privacy
Intrusion prevention
Provides protection from over 55 different types of popular network-based attacks ranging
from malformed packet attacks to denial-of-service (DoS) attacks
Integrates with Cisco Network Intrusion Detection System (IDS) sensors to identify and
dynamically block/shun hostile network nodes
Authentication,
authorization, and
accounting (AAA) support
Integrates with popular AAA services via TACACS+ and RADIUS
Provides tight integration with Cisco Secure Access Control Server (ACS) for
user/administrator authentication, dynamic per-user/group policies, and administrator access
privileges
X.509 certificate and CRL
support
Supports SCEP-based enrollment with leading X.509 solutions from Baltimore, Entrust,
Microsoft, and VeriSign
Integration with leading
third-party solutions
Supports the broad range of Cisco AVVID (Architecture for Voice, Video and Integrated Data)
partner solutions that provide URL filtering, content filtering, virus protection, scalable remote
management, and more
Integrated security lock slot
Provides ability to physically secure the Cisco PIX 501 Security Appliance using a standard
notebook security cable lock (lock not included)