Cisco IOS Firewall

Product type: Network and Network Related Devices and Systems
Product Status: Completed
Assurance Level: EAL4+

Version: 12.3(14)T and 12.4(4)T
Components: Evaluated Platforms: c871, c876, c877, c878c, c1801, c1802, c1803, c1811, c1812, c1841, c2801, c2811, c2821, c2851, c3825, c3845, 7204VXR, 7206VXR and CISCO7301.

Product Details

Product Description

Certification Country: UNITED STATES (2006)
Certification Method: CC
Crypt Evaluation: Not Required
Evaluation Facility: Arca CCTL
Manufacturer/Vendor/Distributor: Cisco Systems


Cisco Systems Inc
Global Certifications

Phone: + 1 410 309 4862
Email: [email protected]

Kylie Pratt

Phone: +61 2 6216 0660
Email: [email protected]


Consumer Guide
Security Target
Certification Report

The Target of Evaluation (TOE) is the implementation of the Firewall functionality of Cisco IOS running on Cisco Systems routers. Routers are used to construct IP networks by interconnecting multiple smaller networks or network segments. The Cisco IOS Firewall functionality controls the flow of internet protocol (IP) traffic between network interfaces.

Cisco routers are dedicated hardware devices with purpose written software, which performs many networking functions. The TOE addresses the following:

- The Firewall function (access control lists and stateful inspection) 

- Functions relevant to the secure configuration and operation of the Firewall function, such as the authentication and configuration of TOE administrator, configuration of packet filter rules and the searching and sorting of audit data. 

- The remote administration of the Cisco IOS router via SSH connections to the routers command line interface.

The Cisco IOS Firewall enhances existing Cisco IOS security capabilities with many features including stateful packet filtering, defense against network attacks, per user authentication and authorization, and real-time alerts.