PIX535 with Anti-Virus

Hi Guys,

Has any one integrated the PIX 535 with any Anti-Virus Software.
I need to know some details

thanks
Naren
LVL 12
r_naren22atyahooAsked:
Who is Participating?
 
rsivanandanConnect With a Mentor Commented:
Yeah, I know :-) For IDS there is a direct integration and I know that. But what you're looking for is available only as part of NAC introduced fairly recent (In a sense, dev is still going on)

The network diagram you wrote there is exacly how it is; 2 ways basically along with the CSA client, a new component called CTA (Cisco trust agent) also will be pushed to the clients which in turn takes care of of the talking to NAC enabled device for compliance.

Unfortunately I don't have CCO access now (I work for Juniper now :-)). So I don't have a way of looking things.

Cheers,
Rajesh
0
 
lrmooreCommented:
No
The new ASA line does have in-line AV integrated, but there is nothing for the PIX
0
 
r_naren22atyahooAuthor Commented:
I have seen this document
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_data_sheet09186a008007d05d.html
 
and I assumed that there could be some integration that can be done
This was the quote from the above link
--------------------------
Integration with Leading Third-Party Solutions | . Supports the broad range of Cisco Technology Developer partner solutions that provide URL filtering,
                                                                   |     content  filtering, virus protection, scalable remote management, and more
                                                                                                   ------------------
------------------------

is there any ?????
 
regards
Nare
0
Protect Your Employees from Wi-Fi Threats

As Wi-Fi growth and popularity continues to climb, not everyone understands the risks that come with connecting to public Wi-Fi or even offering Wi-Fi to employees, visitors and guests. Download the resource kit to make sure your safe wherever business takes you!

 
rsivanandanCommented:
As far as I know, there is none and even if there is one then it is Trend Micro since they have it for IDS/IPS devices.

Cheers,
Rajesh
0
 
r_naren22atyahooAuthor Commented:
I am trying to integrate the

-------------PIX535-----(Cisco ACS4.1)&(AAA-Server)-------------Trend Micro.

Some thing like, if virus found, add an access rule to pix will be added by the policy server(ACS) to restrict the access of infected user to other network.

Any Ideas???

regards
naren
0
 
lrmooreCommented:
It's called Clean Access
http://www.cisco.com/en/US/products/products_security_advisory09186a00804f3127.shtml
It is not yet integrated with PIX/ASA/ACS - at least not that I'm aware of.
0
 
r_naren22atyahooAuthor Commented:
Could you look at this please, guys
http://www.experts-exchange.com/Security/Q_21888521.html
0
 
r_naren22atyahooAuthor Commented:
sorry for not keeping in touch, i did some research and found of this

PIX 7.2(1) does have NAC.
Trend has some anti-virus solutions integrating with NAC devices
http://cisco.com/en/US/partner/products/ps6120/products_configuration_guide_chapter09186a008066ebb8.html

http://www.trendmicro.com/en/products/desktop/osce/evaluate/overview.htm
 
I have to do some more research on the integration

regards
Naren
0
 
rsivanandanCommented:
Integration front right now, I know that CSIDS products with 5.x version of softwares are done with TrendMicro signatures => Outbreak prevention...

Cheers,
Rajesh
0
 
rsivanandanCommented:
So if you had an ASA box with IDS integration card, you could do it.

Cheers,
Rajesh
0
 
r_naren22atyahooAuthor Commented:
Hi Rajesh,

This is not an ASA Box :(
its PIX 535 Enterprice licence.

have you had any experiance before with this type of integration?????

I am expecting some thing like this but not sure

             Clients/Servers------------Network--------PIX535------Cisco ACS with AAA Server----Trend Micro Server
     with Cisco Clean Access &
         Trend-Micro Client

regards
Naren
0
 
rsivanandanCommented:
thnx for the points Naren.

Cheers,
Rajesh
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.