Inside a PIX Firewall

Version française disponible ici.

Everyone involved in security has ever heard something about the Cisco PIX Firewall.
During testing, I decided to open one, just for fun. Here’s the inside of the dark box.

First impression: just looks like any 19″ rackmount device:

Overview of PIX firewall

As we can see, it has a floppy drive, which looks unusual for a Cisco device. I was used to find PC Card memory card on Cisco devices, but it wasn’t the case here. Newer models have a flash memory that replaced this floppy drive and are compliant to Cisco’s devices design.

Front view:
Front

Serial (for administration) and failover connectors:
Connectors

External slots:
Slots

Rear view:
Rear

Inside the PIX:
Inside
My home rackmount PC looks almost the same…

RAM and CPU:
CPU
Intel Pentium II processor, SDRAM and standard motherboard.

ISA Card:
ISA EEPROM
Thanks to Antony T. Curtis for the contribution:
The ISA card inside the PIX firewall is a EEPROM card which stores the actual PIX firmware. The normal PC BIOS would run the code on this card at completion of the boot process. It is quite easy to make one of these ISA cards yourself if you want to make a dedicated function device.
Of course, on modern PCs with only PCI bus, it is a bit more tricky because you cannot so easily use cheap logic TTL chips you can buy at your local Radio Shack.

NIC Card:
NIC
Intel EtherExpress Pro/100+

Leave a Reply

Your email address will not be published.

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>