Quick Start Guide Cisco PIX 506/506E Firewall Quick Start Guide For Cisco PIX Firewall Version 6.2 and PDM Version 2.
1 About the Cisco PIX 506/506E Firewall The PIX 506/506E delivers enterprise-class security for remote office/branch office environments in a robust, reliable security appliance.
2 Check Items Included ACT LINK DC POWER INPUT ACT ETHERN LINK ET 1 ETHERN ET 0 USB CONSOL E Cisco PIX 506E PC terminal adapter (74-0495-01) Blue console cable (72-1259-01) Console cable adapter (29-0810-01) Yellow Ethernet cable (72-1482-01) Yellow Ethernet cable (72-1482-01) IX P ll co a D is w C C ire ct F du ro P CoSafe m t Gu pliay an ide nc d e Qu PIX Guick S506E ide tar t Power supply and cable (US shown) 506E power supply (341-0007-01) Documentation 3
3 Connect the Cables Cisco PIX 506E Yellow Ethernet cables Computer or other network device ETH ERN ET LINK 1 ACT ETH ERN ET LINK 0 USB DC CON SOL E Switch aptop computer ACT POW INPUER T Yellow Ethernet cable Power adapter Router Internet 71116 Printer Follow these steps to connect the cables: Step 1 Place the chassis on a flat, stable surface. The chassis is not rack mountable.
4 Power On the PIX 506/506E ACT LINK ACT ETHERN LINK ET 1 DC POWER INPUT ETHERN ET 0 USB DC POWER INPUT CONSOL E Power supply 67932 Cisco PIX 506E Follow these steps to power on the PIX Firewall: Step 1 Connect the small, square connector of the power supply cable to the power connector on the rear panel. Step 2 Connect the AC power connector of the power supply input cable to an electrical outlet. Step 3 Set the power switch to the on (|) position.
5 Check the LEDs CISCO PIX 506E F I R E W A L L ACT NETWORK 67933 POWER If all LEDs are operating as expected (see Table 1 and Table 2), this concludes the hardware installation. The pages that follow include instructions on running PDM and additional optional procedures. Table 1 PIX 506/506E Front Panel LEDs LED State Description POWER Green The device is powered on. Off The device is powered off. Flashing green The software image has been loaded. Off The device is powered off.
Table 2 PIX 506/506E Rear Panel LEDs LED State Description LINK On Data is passing on the port. Off No data is passing on the port. 6 Configuring the PIX 506/506E The PIX 506/506E comes with a factory default configuration that meets the needs of most broadband networking environments. The factory default configuration on the PIX 506/506E protects your inside network from any unsolicited traffic. It is configured to use DHCP on the outside interface to acquire an IP address.
7 PDM Startup Wizard The PIX 506/506E contains an integrated configuration utility called Cisco PIX Device Manager (PDM). PDM is a web browser-based configuration tool designed to help you set up, configure, and monitor the PIX Firewall. PDM is preinstalled on the PIX 506/506E. To access PDM, make sure JavaScript and Java are enabled in your web browser. For best performance, we recommend that you use Microsoft Internet Explorer 5.5 or a higher release.
PDM version 2.0 and higher releases include a Startup Wizard for initial configuration. Follow these steps to load PDM and use the Startup Wizard: Step 1 Use an Ethernet cable to connect your PC to the inside port (Ethernet 1) on the rear panel of the PIX Firewall. Step 2 Configure your PC to use DHCP (to receive an IP address automatically from the PIX Firewall) or assign a static IP address to your PC by selecting an address out of the 192.168.1.0 network.
8 Alternative Ways to Access the PIX 506/506E You can use a serial terminal emulator from a PC or workstation connected to the Console port for local administrative access. 67935 You can also use PDM or a console to configure Telnet access to the PIX 506/506E. By default, Telnet access is not permitted. To Telnet to the PIX 506/506E from the outside perimeter of the firewall, configure an outside IP address and IPSec for a secure Telnet session.
9 Upgrade to DES or 3DES Note The following instructions are applicable to PIX Firewall version 6.2 and higher releases. If you are not running PIX Firewall version 6.2, refer to the Quick Start Guide for the version of software installed on your PIX Firewall. To upgrade features you did not specify at the time of purchase, you need to use an activation key. The activation key lets you add software features to the PIX 506/506E, such as DES or 3DES.
Follow these steps to use an activation key: Step 1 Ensure that the image in Flash memory and the Running Image are the same. Step 2 From the CLI, enter the activation-key activation-key-four-tuple command, replacing activation-key-four-tuple with the activation key obtained from Cisco. Make sure that you are in config mode to enter a new activation key. Note Step 3 Reboot the PIX Firewall by powering it off and then on again.
Refer to the following website for detailed command information and configuration examples: http://cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/cmd_ref/index.htm The Cisco TAC website is available to all customers who need technical assistance. To access the TAC Website go to: http://www.cisco.com/tac 11 Obtaining Documentation Cisco provides several ways to obtain documentation, technical assistance, and other technical resources.
Ordering Documentation You can find instructions for ordering documentation at this URL: http://www.cisco.com/univercd/cc/td/doc/es_inpck/pdi.htm You can order Cisco documentation in these ways: • Registered Cisco.com users (Cisco direct customers) can order Cisco product documentation from the Networking Products MarketPlace: http://www.cisco.com/en/US/partner/ordering/index.shtml • Nonregistered Cisco.
Cisco TAC Website The Cisco TAC website (http://www.cisco.com/tac) provides online documents and tools for troubleshooting and resolving technical issues with Cisco products and technologies. The Cisco TAC website is available 24 hours a day, 365 days a year. Accessing all the tools on the Cisco TAC website requires a Cisco.com user ID and password. If you have a valid service contract but do not have a login ID or password, register at this URL: http://tools.cisco.com/RPF/register/register.
Priority 3 (P3)—Operational performance of your network is impaired, but most business operations remain functional. You and Cisco will commit resources during normal business hours to restore service to satisfactory levels. Priority 4 (P4)—You require information or assistance with Cisco product capabilities, installation, or configuration. There is little or no effect on your business operations.
Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 European Headquarters Cisco Systems Europe 11 Rue Camille Desmoulins 92782 Issy-les-Moulineaux Cedex 9 France www-europe.cisco.com Tel: 33 1 58 04 60 00 Fax: 33 1 58 04 61 00 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA www.cisco.