Change location 

Course Length Format
Select an option
Securing Networks with PIX and ASA (SNPA) v5.0 5 days Lecture/lab
Course outline

Lesson 1: Introducing Cisco Security Appliance Technology and Features

  • Firewalls
  • Security Appliance Overview

Lesson 2: Introducing Cisco ASA and PIX Security Appliance Families

  • Models and Features of Cisco Security Appliances
  • Cisco ASA Security Appliance Licensing
  • Cisco PIX Security Appliance Licensing

Lesson 3: Getting Started with Cisco Security Appliances

  • User Interface
  • File Management
  • Security Appliance Security Levels
  • Basic Security Appliance Configuration
  • Examining Security Appliance Status
  • Time Setting and NTP Support
  • Syslog Configuration

Lesson 4: Configuring Translations and Connection Limits

  • Transport Protocols
  • Network Address Translation
  • Port Address Translation
  • static Command
  • Translation Behavior
  • Connections and Translations

Lesson 5: Using ACLs and Content Filtering

  • ACLs
  • Malicious Active Code Filtering
  • URL Filtering
  • Packet Tracer

Lesson 6: Configuring Object Grouping

  • Overview of Object Grouping
  • Configuring and Using Object Groups

Lesson 7: Configuring AAA

  • Introduction to AAA
  • Installation of Cisco Secure ACS for Windows 2000
  • Security Appliance Access Authentication Configuration
  • Cut-Through Proxy Authentication Configuration
  • Tunnel Access Authentication Configuration
  • Authorization Configuration
  • Accounting Configuration

Lesson 8: Switching and Routing on Cisco Security Appliances

  • VLAN Capabilities
  • Static and Dynamic Routing
  • Multicasting

Lesson 9: Configuring the Cisco Modular Policy Framework

  • Modular Policy Framework Overview
  • Configuring a Class Map
  • Configuring a Policy Map
  • Configuring a Service Policy

Lesson 10: Configuring Advanced Protocol Handling

  • Advanced Protocol Handling
  • Inspection Class Maps and Inspection Policy Maps
  • Regular Expressions
  • FTP Inspection
  • HTTP Inspection
  • Instant Messaging Inspection
  • ESMTP Inspection
  • DNS Inspection
  • Protocol Application Inspection
  • Multimedia Support

Lesson 11: Configuring VPNs

  • Secure VPN Tunnels
  • How IPsec Works
  • IPsec Configuration Tasks
  • Task 1: Prepare to Configure VPN Support
  • Task 2: Configure IKE Parameters
  • Task 3: Configure IPsec Parameters
  • Task 4: Test and Verify VPN Configuration

Lesson 12: Configuring Security Appliance Remote Access Using Cisco Easy VPN

  • Introduction to Cisco Easy VPN
  • The Cisco Easy VPN Connection Process
  • Overview of Cisco VPN Client
  • Configuring Cisco VPN Client as Cisco Easy VPN Remote
  • Working with the Cisco VPN Client
  • Configuring Users and Groups
  • Configuring the Cisco Easy VPN Server for Extended Authentication

Lesson 13: Configuring Cisco Security Appliances for WebVPN

  • WebVPN Feature Overview
  • WebVPN End-User Interface
  • Configure WebVPN General Parameters
  • Configure WebVPN Policies
  • Configure WebVPN Tunnel Groups
  • Configure WebVPN Servers and URLs
  • Configure E-Mail Proxy Servers
  • Configure WebVPN Content Filters and ACLs

Lesson 14: Configuring Transparent Firewall Mode

  • Transparent Firewall Mode Overview
  • Enabling Transparent Firewall Mode
  • Monitoring and Maintaining Transparent Firewall Mode

Lesson 15: Configuring Security Contexts

  • Security Context Overview
  • Resource Management
  • Enabling Multiple Context Mode
  • Configuring a Security Context
  • Managing Security Contexts

Lesson 16: Configuring Failover

  • Understanding Failover
  • Serial Cable–Based Failover Configuration
  • Active/Standby LAN-Based Failover Configuration
  • Active/Active Failover Configuration

Lesson 17: Using Cisco ASDM

  • ASDM Overview and Operating Requirements
  • Prepare for ASDM
  • Navigating ASDM Configuration Windows
  • Navigating ASDM Multimode Windows

Lesson 18: Introducing Cisco ASA SSMs

  • Cisco ASA SSM Overview
  • Cisco ASA AIP SSM Overview
  • Cisco ASA AIP SSM Software Loading
  • Cisco ASA CSC SSM Overview
  • Configure a Security Policy on the Cisco ASA Security Appliance

Lesson 19: Managing Security Appliances

  • Managing System Access
  • Managing User Access Levels
  • Managing Software, Licenses, and Configurations
  • Image Upgrade and Activation Keys
Course labs

Lab 3-1: Configure the Security Appliance and Execute General Maintenance Commands
Lab 4-1: Configure Access Through the Security Appliance
Lab 5-1: Configure ACLs on the Security Appliance
Lab 6-1: Configure Object Groups
Lab 7-1: Configure AAA on the Security Appliance Using Cisco Secure ACS for Windows 2000
Lab 10-1: Configure Advanced Protocol Inspection on the Security Appliance
Lab 11-1: Configure Security Appliance Site-to-Site VPN
Lab 12-1: Configure a Secure VPN Using IPsec Between a Security Appliance and a Cisco VPN Client
Lab 13-1: Configure the Security Appliance for WebVPN
Lab 14-1: Configure Security Appliance Transparent Firewall
Lab 16-1: Configure LAN-Based Active/Standby Failover
Lab 16-2: Configure LAN-Based Active/Active Failover
Lab 17-1: Configure the Security Appliance with ASDM
Lab 18-1: Initialize the Cisco ASA AIP SSM
Lab 19-1: Manage the Security Appliance

CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, Cisco, Cisco IOS, Cisco Systems, the Cisco Systems logo, and Networking Academy are registered trademarks or trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and certain other countries. All other trademarks mentioned in this document or Web site are the property of their respective owners.