CHAPTER
7-1
Cisco 7600 Series Router Module Guide
OL-9392-05
7
Firewall Services Module
This chapter describes the Firewall Services Module (WS-SVC-FWM-1-K9).
The Firewall Services Module protects an internal (inside) network from unauthorized access by users
on an external (outside) network, such as the public Internet.
Note Specific combinations of supervisor engines and modules may not be supported in your chassis. Refer
to the release notes of the software version running on your system for specific information on modules
and supervisor engine combinations that are not supported.
Note The term inside refers to networks or network resources protected by the firewall. The term outside refer
to networks not protected by the firewall.
The Firewall Services Module has the following features:
• Multiple modules—Supports multiple Firewall Services Modules in a Cisco 7600 series routers
chassis.
• Switch fabric-compatible.
• Interface configuration—Performed though native IOS CLI.
• URL filtering enhancement—The module checks the outgoing URL requests with the policy defined
on a Websense Windows NT or UNIX-based server. Depending on the response from the server,
which matches a request against a list of 17 website characteristics that are considered inappropriate
for business use, the module either permits or denies the connection.
• Security—Cisco firewalls provide the latest in security technology ranging from stateful inspection
firewalls to content filtering capabilities that help protect your network environment from future
attacks. Another security feature is the adaptive security algorithm (ASA), which maintains the
firewalled areas between the networks controlled by the firewall.
The stateful, connection-oriented ASA creates session flows based on source and destination
addresses, TCP sequence numbers (which are nonpredictable), port numbers, and additional TCP
flags. You can control all inbound and outbound traffic by applying security policies to each
connection table entry.
• Performance—With support for up to 6 gigabits of throughput, firewalls can provide protection in
the most demanding network environments.
To Next Page
Loading...
Need help?
General
