Datasheet

ManualsBrandsCisco ManualsNetworking515E - PIX Restricted Bundle

Data Sheet

Cisco PIX 515E Security Appliance

The Cisco

PIX

515E Security Appliance delivers a wealth of advanced security and

networking services for small-to-medium business and enterprise networks, in a modular,

purpose-built appliance. Its versatile one-rack unit (1RU) design supports up to six 10/100

Fast Ethernet interfaces, making it an excellent choice for businesses requiring a cost-

effective, resilient security solution with DMZ support.

Part of the market-leading Cisco PIX Security Appliance Series, the Cisco PIX 515E Security

Appliance provides robust user and application policy enforcement, multi-vector attack protection,

and secure connectivity services through a wide range of rich security and networking services,

including:

●

Advanced Application-Aware Firewall Services

●

Market-Leading Voice-Over-IP and Multimedia Security

●

Robust Site-to-Site and Remote Access IPSec VPN Connectivity

●

Award-Winning Resiliency

●

Intelligent Networking Services

●

Flexible Management Solutions

Figure 1. Cisco PIX 515E Security Appliance

Advanced Firewall Services Deliver Strong Business Protection and Rich

Application Control

Robust Stateful Inspection and Application Layer Security

Cisco PIX Security Appliances integrate a broad range of advanced firewall services to protect

businesses from the constant barrage of threats on the Internet and in many business network

environments. As a secure foundation, Cisco PIX Security Appliances provide rich stateful

inspection firewall services, tracking the state of all network communications and preventing

unauthorized network access. Building upon those services, Cisco PIX Security Appliances deliver

strong application layer security through 30 intelligent, application-aware inspection engines that

examine network flows at Layers 4–7. To defend networks from application layer attacks and to

give businesses more control over applications and protocols used in their environment, these

inspection engines incorporate extensive application and protocol knowledge and employ security

enforcement technologies that include protocol anomaly detection, application and protocol state

Summary of content (13 pages)

PAGE 1
Data Sheet Cisco PIX 515E Security Appliance ® ® The Cisco PIX 515E Security Appliance delivers a wealth of advanced security and networking services for small-to-medium business and enterprise networks, in a modular, purpose-built appliance. Its versatile one-rack unit (1RU) design supports up to six 10/100 Fast Ethernet interfaces, making it an excellent choice for businesses requiring a costeffective, resilient security solution with DMZ support.
PAGE 2
Data Sheet tracking, Network Address Translation (NAT) services, and attack detection and mitigation techniques such as application/protocol command filtering, content verification, and URL deobfuscation. These inspection engines also give businesses control over instant messaging, peer-to-peer file sharing, and tunneling applications, enabling businesses to enforce usage policies and protect network bandwidth for legitimate business applications.
PAGE 3
Data Sheet access VPN services, including enforcing VPN client security posture requirements and performing automated software updates of Cisco VPN Clients, to deliver secure, easy-to-manage remote access to corporate networks. Cisco PIX Security Appliances encrypt data using 56-bit Data Encryption Standard (DES), 168-bit Triple DES (3DES), or up to 256-bit Advanced Encryption Standard (AES) encryption.
PAGE 4
Data Sheet example: monitoring only access, read-only access to the configuration, network configuration only, firewall configuration only, and so on. Next-Generation Centralized Management Solutions Administrators can easily manage large numbers of Cisco PIX Security Appliances using CiscoWorks VPN/Security Management Solution (VMS). This suite consists of several integrated software modules including Management Center for Firewalls, Auto Update Server Software, and Security Monitor.
PAGE 5
Data Sheet Features Benefit Purpose-Built Security Appliance ● Uses a proprietary, hardened operating system that eliminates the security risks associated with general-purpose operating systems ● Combines Cisco product quality with no moving parts to provide a highly reliable security platform Fast Ethernet Expansion Options ● Supports easy installation of additional network interfaces two PCI expansion slots ● Supports expansion cards including single-port Fast Ethernet and four-port Fast Ethernet ca
PAGE 6
Data Sheet Features Benefit Authentication, Authorization, and Accounting (AAA) Support ● Integrates with popular AAA services via TACACS+ and RADIUS, with support for redundant servers for increased AAA services resiliency ● Provides highly flexible user and administrator authentication services, dynamic per-user/pergroup policies, and administrator privilege control through tight integration with Cisco Secure Access Control Server (ACS) Robust IPSec VPN Services Cisco Easy VPN Server ● Delivers feat
PAGE 7
Data Sheet Features Zero-Downtime Software Upgrades Benefit ● Enables businesses to perform software maintenance release upgrades on Cisco PIX Security Appliance failover pairs without impacting network uptime or connections through the support of state-sharing between mixed Cisco PIX Security Appliance Software versions (running version 7.
PAGE 8
Data Sheet Features Benefit Cisco PIX Command Line Interface (CLI) ● Allows customers to use existing Cisco IOS Software CLI knowledge for easy installation and management without additional training ● Supports improved ease-of-use with services such as command completion, context-sensitive help, and command aliasing ● Accessible through variety of methods including console port, Telnet, and SSHv2 Command-Level Authorization ● Gives businesses the ability to create up to 16 customizable administrative
PAGE 9
Data Sheet Feature Encryption License Specifications ● 3DES/AES and DES Encryption Licenses ◦ Performance Summary The Cisco PIX 515E Security Appliance has two optional encryption licenses—one license (PIX-VPN-3DES) enables 168-bit 3DES and up to 256-bit AES encryption, the other license (PIX-VPN-DES) enables 56-bit DES encryption. Both are available either at the time of ordering the Cisco PIX 515E Security Appliance, or can be obtained subsequently through Cisco.com.
PAGE 11
Data Sheet Product Ordering Information Table 3 lists ordering information for the Cisco PIX 515E Security Appliances and related products. Table 3.
PAGE 12
Data Sheet Support Ordering Information Table 4 lists ordering information for Cisco SMARTnet support services. Table 4.
PAGE 13
Data Sheet Additional Information For more information, please visit the following links: ● Cisco PIX Security Appliance Series: http://www.cisco.com/go/pix ● Cisco Adaptive Security Device Manager: http://www.cisco.com/go/asdm ● Current list of Cisco product security certifications: http://www.cisco.com/go/securitycert ● Cisco Secure ACS: http://www.cisco.com/go/acs ● CiscoWorks VMS, Management Center for Firewalls, Auto Update Server Software and Security Monitor: http://www.cisco.