Quick Start Guide
Page 1
Quick Start Guide Cisco PIX 506/506E Firewall Quick Start Guide For Cisco PIX Firewall Version 6.2 and PDM Version 2.0 1 About the Cisco PIX 506/506E Firewall 2 2 Check Items Included 3 3 Connect the Cables 4 4 Power On the PIX 506/506E 5 5 Check the LEDs 6 6 Configuring the PIX 506/506E 7 7 PDM Startup Wizard 8 8 Alternative Ways to Access the PIX 506/506E 10 9 Upgrade to DES or 3DES 11 10 Restore the Default Configuration 12
Quick Start Guide Cisco PIX 506/506E Firewall Quick Start Guide For Cisco PIX Firewall Version 6.2 and PDM Version 2.0 1 About the Cisco PIX 506/506E Firewall 2 2 Check Items Included 3 3 Connect the Cables 4 4 Power On the PIX 506/506E 5 5 Check the LEDs 6 6 Configuring the PIX 506/506E 7 7 PDM Startup Wizard 8 8 Alternative Ways to Access the PIX 506/506E 10 9 Upgrade to DES or 3DES 11 10 Restore the Default Configuration 12
Quick Start Guide
Page 2
... for securing Internet connections for remote/branch offices, the PIX 506/506E, part of the market-leading Cisco PIX Firewall Series, provides a wide range of rich security capabilities and remote management capabilities in a cost-effective, high-performance solution: POWER ACT NETWORK CISCO FIRE PIX 506E WA L L • Stateful inspection security based on state-of-the-art Adaptive Security Algorithm (ASA) • Supports over 100 predefined applications, services, and protocols for flexible access control • Virtual Private Networking (VPN) for secure remote network access using...
... for securing Internet connections for remote/branch offices, the PIX 506/506E, part of the market-leading Cisco PIX Firewall Series, provides a wide range of rich security capabilities and remote management capabilities in a cost-effective, high-performance solution: POWER ACT NETWORK CISCO FIRE PIX 506E WA L L • Stateful inspection security based on state-of-the-art Adaptive Security Algorithm (ASA) • Supports over 100 predefined applications, services, and protocols for flexible access control • Virtual Private Networking (VPN) for secure remote network access using...
Quick Start Guide
Page 3
2 Check Items Included ACT LINK ETHERNET 1 ACT LINK ETHERNET 0 USB CONSOLE DC POWER INPUT Cisco PIX 506E Console cable adapter (29-0810-01) Power supply and cable (US shown) 506E power supply (341-0007-01) PC terminal adapter (74-0495-01) Blue console cable (72-1259-01) Yellow Ethernet cable (72-1482-01) ProdFuicCrteisCwcDaollPIX Yellow Ethernet cable (72-1482-01) CGoumSidapefleiatyncaend QGuuiPicdkIeXS5ta0r6tE Documentation 3
2 Check Items Included ACT LINK ETHERNET 1 ACT LINK ETHERNET 0 USB CONSOLE DC POWER INPUT Cisco PIX 506E Console cable adapter (29-0810-01) Power supply and cable (US shown) 506E power supply (341-0007-01) PC terminal adapter (74-0495-01) Blue console cable (72-1259-01) Yellow Ethernet cable (72-1482-01) ProdFuicCrteisCwcDaollPIX Yellow Ethernet cable (72-1482-01) CGoumSidapefleiatyncaend QGuuiPicdkIeXS5ta0r6tE Documentation 3
Quick Start Guide
Page 4
...Printer Yellow Ethernet cables Switch Cisco PIX 506E ACT ETHERNET 1 LINK ACT ETHERNET 0 LINK USB DC CONSOLE IPNOPWUETR Yellow Ethernet cable Power adapter Router Internet 71116 Follow these steps to connect the cables: Step 1 Step 2 Step 3 Place the chassis on a flat, stable surface. Use the yellow Ethernet cable (72-1482-01) provided to connect the outside Ethernet interface, Ethernet 0, to a DSL modem, cable modem, or router. 3 Connect the Cables Computer or other Ethernet cable (72-1482-01) provided to connect the inside Ethernet interface, Ethernet 1, to a switch or hub...
...Printer Yellow Ethernet cables Switch Cisco PIX 506E ACT ETHERNET 1 LINK ACT ETHERNET 0 LINK USB DC CONSOLE IPNOPWUETR Yellow Ethernet cable Power adapter Router Internet 71116 Follow these steps to connect the cables: Step 1 Step 2 Step 3 Place the chassis on a flat, stable surface. Use the yellow Ethernet cable (72-1482-01) provided to connect the outside Ethernet interface, Ethernet 0, to a DSL modem, cable modem, or router. 3 Connect the Cables Computer or other Ethernet cable (72-1482-01) provided to connect the inside Ethernet interface, Ethernet 1, to a switch or hub...
Quick Start Guide
Page 5
Set the power switch to the on the rear panel. 4 Power On the PIX 506/506E ACT LINK ETHERNET 1 ACT LINK ETHERNET 0 DC POWER USB CONSOLE INPUT DC POWER INPUT Cisco PIX 506E Power supply Follow these steps to power on the PIX Firewall: Step 1 Step 2 Step 3 Connect the small, square connector of the power supply input cable to an electrical outlet. Connect the AC power connector of the power supply cable to the power connector on (|) position. 67932 5
Set the power switch to the on the rear panel. 4 Power On the PIX 506/506E ACT LINK ETHERNET 1 ACT LINK ETHERNET 0 DC POWER USB CONSOLE INPUT DC POWER INPUT Cisco PIX 506E Power supply Follow these steps to power on the PIX Firewall: Step 1 Step 2 Step 3 Connect the small, square connector of the power supply input cable to an electrical outlet. Connect the AC power connector of the power supply cable to the power connector on (|) position. 67932 5
Quick Start Guide
Page 6
... include instructions on . Table 1 PIX 506/506E Front Panel LEDs LED POWER ACT Network State Green Off Flashing green Off Flashing green Off Description The device is powered on running PDM and additional optional procedures. The software image has been loaded. No network interfaces are passing traffic. ACT LINK ACT LINK ETHERNET 1 ETHERNET 0 USB CONSOLE DC POWER INPUT PIX 506/506E Rear Panel LEDs State On Off Description Network activity is present on the port. One or more network interfaces...
... include instructions on . Table 1 PIX 506/506E Front Panel LEDs LED POWER ACT Network State Green Off Flashing green Off Flashing green Off Description The device is powered on running PDM and additional optional procedures. The software image has been loaded. No network interfaces are passing traffic. ACT LINK ACT LINK ETHERNET 1 ETHERNET 0 USB CONSOLE DC POWER INPUT PIX 506/506E Rear Panel LEDs State On Off Description Network activity is present on the port. One or more network interfaces...
Quick Start Guide
Page 7
... port. 6 Configuring the PIX 506/506E The PIX 506/506E comes with a factory default configuration that you easily change the administrative and Telnet passwords from any unsolicited traffic. Instances in which it might be necessary to change or make additional changes to -Point Protocol over Ethernet (PPPoE) or a static IP address for hosts on the outside interface • To configure VPN and Auto Update features 7 No data is configured to use DHCP on the inside network from their default settings...
... port. 6 Configuring the PIX 506/506E The PIX 506/506E comes with a factory default configuration that you easily change the administrative and Telnet passwords from any unsolicited traffic. Instances in which it might be necessary to change or make additional changes to -Point Protocol over Ethernet (PPPoE) or a static IP address for hosts on the outside interface • To configure VPN and Auto Update features 7 No data is configured to use DHCP on the inside network from their default settings...
Quick Start Guide
Page 8
To access PDM, make sure JavaScript and Java are enabled in your web browser. 7 PDM Startup Wizard The PIX 506/506E contains an integrated configuration utility called Cisco PIX Device Manager (PDM). PDM is a web browser-based configuration tool designed to the Cisco PIX Device Manager Installation Guide for more information on the PIX 506/506E. For best performance, we recommend that you set up, configure, and monitor the PIX Firewall. Refer to help you use Microsoft Internet Explorer 5.5 or a higher...
To access PDM, make sure JavaScript and Java are enabled in your web browser. 7 PDM Startup Wizard The PIX 506/506E contains an integrated configuration utility called Cisco PIX Device Manager (PDM). PDM is a web browser-based configuration tool designed to the Cisco PIX Device Manager Installation Guide for more information on the PIX 506/506E. For best performance, we recommend that you set up, configure, and monitor the PIX Firewall. Refer to help you use Microsoft Internet Explorer 5.5 or a higher...
Quick Start Guide
Page 9
... follow the instructions in "https," you cannot access the PIX Firewall. Configure your PC to use the Startup Wizard: Step 1 Step 2 Use an Ethernet cable to connect your PC to your PC has basic connectivity to the inside port (Ethernet 1) on page 6) to verify that your PC by selecting an address out of the PIX Firewall. To access the Startup Wizard, use a PC connected to the inside interface of the Startup Wizard window. 9 When connectivity occurs, the...
... follow the instructions in "https," you cannot access the PIX Firewall. Configure your PC to use the Startup Wizard: Step 1 Step 2 Use an Ethernet cable to connect your PC to your PC has basic connectivity to the inside port (Ethernet 1) on page 6) to verify that your PC by selecting an address out of the PIX Firewall. To access the Startup Wizard, use a PC connected to the inside interface of the Startup Wizard window. 9 When connectivity occurs, the...
Quick Start Guide
Page 10
You can use the command-line interface (CLI). 10 Configure the PC terminal emulation software or terminal for local administrative access. Plug the other end of the console cable adapter into a standard 9-pin PC serial port. For more information, refer to the Cisco PIX Firewall and VPN Configuration Guide. 67935 ACT LINK ETHERNET 1 ACT LINK ETHERNET 0 DC POWER USB CONSOLE INPUT DC POWER INPUT Cisco PIX 506E PC terminal adapter Blue console cable To connect a console for local administrative access: Step 1 Step 2 Step 3 Step 4 Plug one end of the blue console cable (72-...
You can use the command-line interface (CLI). 10 Configure the PC terminal emulation software or terminal for local administrative access. Plug the other end of the console cable adapter into a standard 9-pin PC serial port. For more information, refer to the Cisco PIX Firewall and VPN Configuration Guide. 67935 ACT LINK ETHERNET 1 ACT LINK ETHERNET 0 DC POWER USB CONSOLE INPUT DC POWER INPUT Cisco PIX 506E PC terminal adapter Blue console cable To connect a console for local administrative access: Step 1 Step 2 Step 3 Step 4 Plug one end of the blue console cable (72-...
Quick Start Guide
Page 11
... Enter the activation key only after you need to use an activation key. To purchase an activation key for DES, complete the online form at the time of software installed on your PIX Firewall. In the e-mail include the PIX Firewall serial number as DES or 3DES. To upgrade features you did not specify at the following instructions are not running PIX Firewall version 6.2, refer to the PIX 506/506E, such...
... Enter the activation key only after you need to use an activation key. To purchase an activation key for DES, complete the online form at the time of software installed on your PIX Firewall. In the e-mail include the PIX Firewall serial number as DES or 3DES. To upgrade features you did not specify at the following instructions are not running PIX Firewall version 6.2, refer to the PIX 506/506E, such...
Quick Start Guide
Page 12
... to update the running image. 10 Restore the Default Configuration Caution Entering the config factory-default command erases the current running configuration. write memory Writes the factory default configuration to use an activation key: Step 1 Step 2 Ensure that you can restore the factory default values in Flash memory and the Running Image are the same. Note Make sure that the image in one of the following commands: Step 1 Step 2 Command Description config factory-default [ [address mask]] 1 the factory default configuration. Step 3 Reboot the PIX Firewall by powering...
... to update the running image. 10 Restore the Default Configuration Caution Entering the config factory-default command erases the current running configuration. write memory Writes the factory default configuration to use an activation key: Step 1 Step 2 Ensure that you can restore the factory default values in Flash memory and the Running Image are the same. Note Make sure that the image in one of the following commands: Step 1 Step 2 Command Description config factory-default [ [address mask]] 1 the factory default configuration. Step 3 Reboot the PIX Firewall by powering...
Quick Start Guide
Page 13
... in a Cisco Documentation CD-ROM package, which may have shipped with your product. To access the TAC Website go /subscription 13 Registered Cisco.com users can order a single Documentation CD-ROM (product number DOC-CONDOCCD=) through an annual or quarterly subscription. Refer to the following website for detailed command information and configuration examples: http://cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/cmd_ref...
... in a Cisco Documentation CD-ROM package, which may have shipped with your product. To access the TAC Website go /subscription 13 Registered Cisco.com users can order a single Documentation CD-ROM (product number DOC-CONDOCCD=) through an annual or quarterly subscription. Refer to the following website for detailed command information and configuration examples: http://cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/cmd_ref...
Quick Start Guide
Page 14
... order Cisco documentation in e-mail to the following address: Cisco Systems Attn: Customer Document Ordering 170 West Tasman Drive San Jose, CA 95134-9883 We appreciate your comments in these ways: • Registered Cisco.com users (Cisco direct customers) can order Cisco product documentation from the Networking Products MarketPlace: http://www.cisco.com/en/US/partner/ordering/index.shtml • Nonregistered Cisco.com users can order documentation through a local...
... order Cisco documentation in e-mail to the following address: Cisco Systems Attn: Customer Document Ordering 170 West Tasman Drive San Jose, CA 95134-9883 We appreciate your comments in these ways: • Registered Cisco.com users (Cisco direct customers) can order Cisco product documentation from the Networking Products MarketPlace: http://www.cisco.com/en/US/partner/ordering/index.shtml • Nonregistered Cisco.com users can order documentation through a local...
Quick Start Guide
Page 15
...Open Tool automatically recommends resources for troubleshooting and resolving technical issues with Cisco products and technologies. For P1 or P2 cases (your business operations running smoothly. Cisco TAC engineers are negatively affected by telephone, use one of the following numbers...listing of Cisco TAC contacts, go to a Cisco TAC engineer. After you describe your business operation are assigned immediately to P1 and P2 cases to help keep your production network is down " or there is minimally impaired or you have a valid service contract but do not have a login ID or password...
...Open Tool automatically recommends resources for troubleshooting and resolving technical issues with Cisco products and technologies. For P1 or P2 cases (your business operations running smoothly. Cisco TAC engineers are negatively affected by telephone, use one of the following numbers...listing of Cisco TAC contacts, go to a Cisco TAC engineer. After you describe your business operation are assigned immediately to P1 and P2 cases to help keep your production network is down " or there is minimally impaired or you have a valid service contract but do not have a login ID or password...
Quick Start Guide
Page 16
.... Included are listed at this URL: http://www.ciscopress.com Packet magazine is the Cisco quarterly publication that delivers the latest information about Internet business strategies for new and experienced users: Internetworking Terms and Acronyms Dictionary, Internetworking Technology Handbook, Internetworking Troubleshooting Guide, and the Internetworking Design Guide. Priority 3 (P3)-Operational performance of networking publications. Access the Cisco Product Catalog at this...
.... Included are listed at this URL: http://www.ciscopress.com Packet magazine is the Cisco quarterly publication that delivers the latest information about Internet business strategies for new and experienced users: Internetworking Terms and Acronyms Dictionary, Internetworking Technology Handbook, Internetworking Troubleshooting Guide, and the Internetworking Design Guide. Priority 3 (P3)-Operational performance of networking publications. Access the Cisco Product Catalog at this...
Quick Start Guide
Page 17
Addresses, phone numbers, and fax numbers are listed on the Cisco Web site at www.cisco.com/go/offices Argentina • Australia • Austria • Belgium • Brazil • Bulgaria • Canada • Chile • China PRC • Colombia • ...containing 10% postconsumer waste. 78-14215-01 DOC-7814215= Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 European Headquarters Cisco Systems Europe 11 Rue Camille Desmoulins 92782 Issy-les-Moulineaux Cedex 9 ...
Addresses, phone numbers, and fax numbers are listed on the Cisco Web site at www.cisco.com/go/offices Argentina • Australia • Austria • Belgium • Brazil • Bulgaria • Canada • Chile • China PRC • Colombia • ...containing 10% postconsumer waste. 78-14215-01 DOC-7814215= Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 European Headquarters Cisco Systems Europe 11 Rue Camille Desmoulins 92782 Issy-les-Moulineaux Cedex 9 ...