I am in the process of designing a network connection that must conform to the National Information Assurance Partnership (NIAP) Common Criteria, but I have run into a slight problem getting the PIX configuration approved.
The problem is not with the PIX hardware or software. The problem is that the Target of Evaluation (TOE) which was used to certify the PIX firewall *requires* the use of PIX Firewall Syslog Server 5.1(3). PFSS software is no longer available from Cisco, and I only have version 5.1(2). The result is that the use of a PIX firewall (or ASA) will remain unapproved until, or unless, I can find PFSS 5.1(3).
This brings me to my two questions:
1. Is my information on NIAP Common Criteria certified Cisco equipment correct? That is, are there newer certifications for Cisco products that do *not* require the use of PFSS as the syslog server?
2. Is there any place where I can still obtain the PIX Firewall Syslog Server software version 5.1(3)?