Cisco FIREWALL 2.0: Configuring Cisco ASA Basic Access Control Features

This course is included in our On-demand training solution.

Overview

The Cisco ASA Adaptive Security Appliance provides the administrator with a rich set of access control methods that can tightly control access between networks. This course discusses the most fundamental of these controls: interface access rules that enforce a basic Layer 3 and Layer 4 policy, permanent automatic antispoofing mechanisms, and temporary host-blocking mechanisms that may be required for incident response.

Target Audience

Anyone wishing to obtain the Cisco Certified Network Professional CCNP Security designation. Cisco Network Security Engineers responsible for the selection, configuration, and the troubleshooting of the majority of Cisco ASA Adaptive Security Appliance perimeter security features to reduce risk to IT infrastructure and its applications within their networking environments. Established IT professionals with a good understanding of networking and Cisco technology, installation, troubleshooting and monitoring of devices used to maintain integrity, confidentiality and availability of data and network devices that Cisco uses in its security infrastructure, as well as working knowledge of the Microsoft Windows operating system. Candidates who have completed the Cisco Certified Network Associate (CCNA) Certification and the Cisco Certified Network Associate Security Certification (CCNA Security).

Prerequisites

Expected Duration

150 min.

Course Objectives

Local Host Tables

  • describe the connection and local host tables
  • Interface Access Rules Overview

  • identify the considerations when configuring interface access rules
  • Configuring Interface Access rules

  • describe how to configure interface access rules on the Cisco ASA
  • describe how to configure time-based interface access rules on the Cisco ASA
  • Configuring Access Lists

  • configure Access rules using the Cisco ASDM
  • Configuring and Verifying Global ACLs

  • describe how to configure and verify global ACLs on the Cisco ASA Security Appliance
  • Configuring and Verifying Object Groups

  • recognize how to configure and verify object groups on the Cisco ASA
  • Configuring Basic Access Control – Object Groups

  • configure service groups and network objects using the ASDM
  • Configuring Public Servers, uRPF, and Shunning

  • describe how to configure and verify public servers on Cisco ASA Security Appliances
  • recognize how to configure and verify Unicast Reverse Path Forwarding and shunning on the Cisco ASA
  • Troubleshooting ACLs

  • describe the features used to troubleshoot basic access control on the Cisco ASA
  • Configuring uRPF and Using the Real-Time Log Viewer

  • configure uRPF and use the Real-time Log Viewer
  • SUBSCRIPTION COST



     

    NEED HELP OR NOT SURE?