PIX vs. Cisco Routers ACL

Posted on 2003-03-31
Medium Priority
Last Modified: 2013-11-16

Today IOS's ACLs and CBAC give us stateful inspection of packets, and I start wondering why invest
money in PIX if today cisco's routers can also function as firewalls ?
Question by:elad00
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
LVL 79

Accepted Solution

lrmoore earned 200 total points
ID: 8245356
The difference is that a PIX was designed ground-up to be a firewall and uses an Adaptive Security Algorithm as well as layer 4 inspection "fixup".
IOS with CBAC/firewall "features" is a souped up router with added features such as stateful inspection (layer 3 only). For a small spot implementation, this might be adequate, but for an application where security is paramount, a 'defense in depth' strategy calls for both the screening access router (not necessarly with CBAC/FW feature set, but perhaps the IDS features), and a firewall.
LVL 14

Expert Comment

ID: 8246241
Not to mention that it's a lot easier to configure a PIX properly than CBAC.

Featured Post

On Demand Webinar: Networking for the Cloud Era

Did you know SD-WANs can improve network connectivity? Check out this webinar to learn how an SD-WAN simplified, one-click tool can help you migrate and manage data in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
Many of the companies I’ve worked with have embraced cloud solutions due to their desire to “get out of the datacenter business.” The ability to achieve better security and availability, and the speed with which they are able to deploy, is far grea…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Suggested Courses
Course of the Month11 days, 20 hours left to enroll

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question