Security Technologies

Implementing a Cisco ASA 9.x Firewall

Overview and Basic Initialization

  • ASA Overview and Traffic Flow
  • Basic Initialization

Configuring Routing on the ASA

  • Routing on the ASA - Static Routes
  • Routing on the ASA - RIPv2
  • Routing on the ASA - EIGRP
  • Routing on the ASA - OSPF
  • Routing on the ASA - BGP

Traffic Flow

  • Controlling Thru Traffic Using an Access Control Lists (ACL)
  • Controlling Traffic to the Firewall

Remote Management

  • Remote Management Access to the Firewall
  • Configuring Management Access Using TELNET
  • Configuring Management Access Using SSH
  • Configuring Management Access Using HTTP using ASDM

Network Address Transalation (NAT)

  • Overview of NAT and Dynamic NAT
  • Static NAT
  • Destination NAT
  • Dynamic PAT
  • Static PAT
  • Policy NAT

Transparent Layer 2 Firewall

  • Overview and Basic Initialization of Transparent Firewall
  • Routing Thru a Transparent Firewall
  • Ethertype ACLs on a Transparent Firewall

Virtualization and Redundancy

  • Redundant Interfaces
  • Port-Channels
  • Security Contexts
  • Active Standby Failover - Stateless
  • Active Standby Failover - Stateful
  • Active Active Failover
  • ASA Clustering Overview
  • ASA Clustering - Spanned Mode

Deep Packet Inspection (DPI)

  • Deep Packet Inspection Overview
  • DPI - ICMP Inspection
  • DPI - FTP on a Non-Standard Port

Virtual Private Networks (VPNs)

  • IPSec Overview
  • Site-To-Site IPSec thru a Firewall - without NAT-T
  • Site-To-Site IPSec thru a Firewall - with NAT-T
  • LAN-To-LAN VPN between a Router and an ASA
  • Configuring ASDM for Management
  • Configuring WebVPN
  • Remote Access VPN using AnyConnect

Virtual Private Networks (VPNs)

Basic VPNs

  • VPN Overview
  • LAN-To-LAN Tunnel without NAT-T
  • LAN-To-LAN Tunnel with NAT-T
  • Point-to-Point GRE
  • Encrypting GRE Tunnels using IPSec
  • IPSec Tunnel Interface - Static Virtual Tunnel Interface

Advanced VPNs

  • Multipoint GRE (mGRE) Tunnel
  • Configuring DMVPN – Phase I
  • Configuring DMVPN – Phase II
  • Configuring DMVPN – Phase III
  • Configuring DMVPN Phase III with Dual Hub
  • Encrypting DMVPN Traffic using IPSec
  • Configuring GETVPN-small
  • Configuring GETVPN with Redundancy
  • Configuring VRF aware VPN
  • Configuring a Router as a CA Server

Configuring VPNs using IKEV2

  • Site-To-Site IPSec VPN using IKEv2 – Crypto Maps
  • Site-To-Site IPSec VPN using IKEv2 – S-VTI

Configuring FLEX VPNs

  • Site-To-Site IPSec VPN using IKEv2 – Crypto Maps
  • Site-To-Site IPSec VPN using IKEv2 – S-VTI

ASA VPNs

  • Site-To-Site IPSec thru a Firewall - without NAT-T
  • Site-To-Site IPSec thru a Firewall - with NAT-T
  • LAN - To -LAN VPN between a Router and an ASA
  • Configuring ASDM for Management
  • Configuring WebVPN
  • Remote Access VPN using AnyConnect