CONTENTS

Firewall ACL: Technical Details

Technical details.

1. AddressPpools. Company’s X private address pool for its network is 10.10.10.0 with a netmask of 255.255.255.0. Their public address pool is 192.168.11.0 – 192.168.11.7 although only addresses from 192.168.11.1 – 192.168.11.6 are usable.

2. Configuring the PIX1 Firewall. In order to configure the PIX1 firewall you will connect the blue cable that ends in a serial adapter to the serial port on the back of PC1. Once you log in to your user account (explained later) you can activate the Connect to Serial Port icon located on your desktop. Press the Enter key several times to “wake up” the connection. You will not be using the PIX Device Manager’s graphical user interface to configure the firewall in this assignment.

3. Erasing Previous Configurations on the PIX Firewall. Before starting to configure the PIX firewall you should erase any previous configuration already stored on it so that you can start your work from an unconfigured system. To do this enter privileged mode on the PIX firewall and use the following commands:

write erase

reload

These commands erase the current configuration from the flash memory of the PIX and reboot the firewall. To start configuring the PIX answer yes to any prompt that shows up except for the one that says Pre-configure PIX Firewall now through iterative prompts? to which you should answer no.
After all this you’ll be left at the prompt of the unprivileged mode of the PIX. Since there is no configuration stored on it, the enable (privileged mode) password is blank. When asked for the enable password just press the Enter key.

When you have finished this lab assignment, erase the configuration that you have provided to the PIX firewall so the next student team will also start from an unconfigured system.

4. Log in for the Windows Machines. For your work in this lab you will use the username seclab with password seclab1 on all Windows 2000 based machines.