CHAP TER
45-1
User Guide for Cisco Security Manager 4.4
OL-28826-01
45
Managing Firewall Devices
The following topics describe configuration and management of security services and policies on Cisco
security devices: Adaptive Security Appliances (ASAs), PIX Firewalls, and the Catalyst 6500 series
switch Services Modules—that is, Firewall Services Modules (FWSMs) and ASA-SMs.
This chapter contains the following topics:
Firewall Device Types, page 45-1
Default Firewall Configurations, page 45-2
Configuring Firewall Device Interfaces, page45-2

Firewall Device Types

Security Manager can discover and manage a variety of Cisco security appliances or firewall devices,
most notably the following:
PIX 500 Series firewall devices
ASA 5500 Series security appliances
Security-specific Catalyst Services Modules
PIX 500 Series
The Private Internet eXchange (PIX) 500 Series firewall appliances are no longer sold, however they are
still supported and a great many are still in use world-wide.
ASA 5500 Series
The Adaptive Security Appliance (ASA) 5500 Series devices provide comprehensive security services,
including context-aware firewall capabilities and real-time threat defense. The ASA 5500 has replaced
the PIX 500 as Cisco’s primary security appliance. Visit the Cisco ASA 5500 Series Adaptive Security
Appliance page on cisco.com for more information.
Catalyst Services Modules
A variety of Services Modules (SMs) are available for the Catalyst 6500 switch, including two that
provide firewall and security services. These are blade-type modules that are installed directly into the
switch chassis.
The Firewall Services module (FWSM) allows any port on the switch to operate as a firewall port,
integrating firewall security inside the network structure. See Cisco Catalyst 6500 Series Firewall
Services Module for more information.