Articles Tagged ‘VPN’

Cisco Firewalls - ASA & PIX Firewall Configuration


This category contains articles covering Cisco’s popular Advanced Security Appliances (ASA) 5500/5500x series and PIX Firewalls. Thanks to the structure of the Cisco ASA 5500 series software, almost all articles are applicable to all ASA5500 series appliances, including ASA5505, ASA5510, ASA5520, ASA5540, ASA5550 and ASA5580, ASA 5512-X, ASA 5515-X, ASA 5525-X, ASA 5545-X, ASA 5555-X.

The variety of topics provided include basic startup configuration, advanced configuration, NAT (PAT, Static, Dynamic and more), Firewalling – Access-lists, Firewall Management, Firewall redundancy, VPN client configuration, WebVPN (SSLVPN) configuration, software upgrades and much more.

We are continuously updating this section to provide the best up-to-date information for our readers.

We hope you enjoy the provided articles and welcome your feedback and suggestions.

Cisco KnowledgeBase

The 'Cisco KnowledgeBase' section is one of the newest and most popular section on Firewall.cx. Dedicated to Cisco's leading technological inovations, this section offers articles covering multiple categories such Cisco Routers, Switches, Voice over IP and much more.

All articles are written by qualified engineers with years of experience and are complimented by our unique diagrams.

The quality of provided information is so high, readers can use it as a guideline for learning Cisco Technologies, but also for self-study exams.

We should note that Firewall.cx is only site, officially recommended by Cisco's Network Academy Program (see Site Related/Awards section), which confirms the validity of Firewall.cx and provided information.

Articles and examples provided in this section, cover the CCENT, CCNA, CCDA, CCNP & CCVP certification levels.

Cisco Routers - Configuring Cisco Routers

The Cisco Router section contains technical articles covering the installation and configuration of Cisco routers and services such as GRE Tunnels, VPN connections, Policy Based Routing (PBR), Router-on-a-stick, Dynamic Multipoint VPN (DMVPN), Cisco Configuration Profressional Setup and much more.

All our articles contain detailed step-by-step instructions and detailed diagrams to ensure the reader understands the topic covered and is able to implement it without much trouble.

We hope you enjoy the provided articles and welcome your feedback and suggestions.

Cisco Services & Technologies

This section is dedicated to Cisco's Services and Technologies. This includes Cisco's famous 'SmartNet' services, the newer 'SmartCare services', new technologies such as WebVPN, how to order SmartNet and warranty packages, Cisco VPN services for Windows, Unified Communication articles and more.

Introduction to Palo Alto Next-Generation Network Firewalls

palo-alto-firewalls-introduction-features-technical-specifications-1aDuring the past decade, we’ve seen the global IT security market flooded with new network security and firewall security appliances. New vendors emerging into the market while existing well-known vendors introduce new smarter and complex firewalls that aim to keep enterprise organizations as safe as possible. Palo Alto Networks is one of the new-generation security vendors who have managed to break into a saturated market and make their stand.

It’s no coincidence that Palo Alto Networks is considered to be a leader and pioneer when it comes to Next Generation Firewall appliances and Gartner seems to agree with this statement based on their Magic Quadrant report in the Next Generation Firewall Segment:

Magic Quadrant for Enterprise Network Firewalls

Figure 1. Gartner Magic Quadrant for Enterprise Network Firewalls

Palo Alto Networks Next-Generation Firewalls unique way of processing a packet using the Single ­­­Pass Parallel Processing (SP3) engine makes them a clear leader.

Note: Read all our technical articles covering Palo Alto Firewalls by visiting our Palo Alto Firewall Section.

Basically, the SP3 engine utilizes the same stream-based signature format to process the protection features like Anti-Virus, Spyware, Vulnerability Protection and Data Filtering. By doing so the firewall saves valuable processing power, unlike other Unified Threat Management (UTM) appliances which serially process each security feature offered, this often introduces latency to the network traffic.

The advanced security features like App-ID, User-ID, Content-ID along with Security profiles, comprising feature like Antivirus, Anti-Spyware, Vulnerability protection, URL Filtering, DoS Protection and Data Filtering makes Palo Alto the leader. Most importantly its malware analysis solution WildFire offers advanced protection from unknown threats.

Palo Alto Networks offers its firewalls as Hardware Platforms and Virtual Platforms. Its Hardware Platforms comes in different flavors.

palo-alto-firewalls-introduction-features-technical-specifications-2

Figure 2. The Palo Alto Firewall family

PA-200 and PA-500 Series Firewalls are meant for Small Businesses and come with very limited throughput and do not support Virtual Systems. Virtual Systems, also known as VSYS, is used to create virtual firewall instances in a single-pair of Palo Alto Firewalls, in other words, Virtual Systems can be compared to contexts in Cisco ASA Firewalls or vdom in Fortinet firewalls. The PA-200, PA-500 Series Firewalls offer a very limited number of security policies like security rules, NAT rules, policy based forwarding rules and a few more.

Datasheets on Palo Alto Firewall appliances and Virtual Servers are available at our Palo Alto Datasheets and Guides download area

The table below provides a clear comparison of features and technical specifications of both PA-500 and PA-200 firewall models:

WAN Technologies

This section deals with the analysis of the various WAN technologies available today. These technologies are primarily used to connect companies and enterprises with remote offices across the country or globe.

Below are the currently available technologies analysed on Firewall.cx:

Articles To Read Next:

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup