ASA Basics & Initialization

This document provides an overview of the topics covered in a Cisco security course, including: 1. Configuration of basic ASA features such as security levels, interfaces, and EtherChannels. 2. Management and access control lists for ASA devices. 3. Features of transparent firewall mode such as ARP inspection. 4. Virtual firewall behavior and traffic classification in multiple-context mode. 5. Failover functionality and configurations.

Uploaded by

Ankur Singh

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

48 views

ASA Basics & Initialization

Uploaded by

Ankur Singh

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

You are on page 1/ 4

1.

ASA Basics & Initialization

o IPv4, IPv6
o Security Levels
o Default filtering behavior
o Subinterfaces
o Redundant ports
o EtherChannels
2. Management & ACLs
o In-Band & OOB management
o ASDM
o Different ACL types (IPv4, IP6, Global, etc.)
o Objects & Object Groups
3. Transparent Firewall
o Transparent ASA behavior
o ARP Inspection
o CAM Protection
o Transparent ASA NAT
4. Multiple-Contexts
o Virtual Firewall behavior
o Traffic Classification
o Resource Limits
5. Failover
o Failover Link
o Active Standby
o Active/Active
6. Routing--------------------------------------------------------------------------14/01/15
o ASA Routing Overview
o Static routes
o Route Monitoring
o OSPF
o EIGRP
7. NAT
o NAT Overview
o NAT Tables
o NAT Considerations
o Pre 8.3 NAT
o Post 8.3 NAT (Auto & Manual/Twice)
8. Modular Policy Framework
o MPF Overview
o Order of operations
o Inspection Overview
o Other MPF features
9. CBAC
o Stateful firewall behavior
o Generic vs Application inspection
o Deployment scenarios
o Tuning
o PAM
o IPv6 CBAC
o VFR
10. ZFW
o Overview
o Traffic control (zone policies)
o Classification methods
o Application-Layer inspection
o Parameter Maps
o IPv6 ZFW
11. Public Key Infrastructure
o Digital Certificates
o PKI Models
o IOS CA Server
o PKI Clients (IOS, ASA)
o CRL
12. Virtual Private Networks Fundamentals
o IPsec Fundamentals
o IKE, ISAKMP
o AM/MM modes
o AH, ESP
o Tunnel/transport modes
o NAT-T
13. IPSec Site-to-Site
14. Remote Access VPNs
15. DMVPN
o Overview
o Phase I, II and III
o Dual-Hubs
o IPv6 DMVPN
16. GETVPN
o Overview
o GMs, KS
o GDOI
o VRF-Aware GETVPN
o IPv6 GETVPN
17. IKEv2
o Overview
o Protocol operations
18. AnyConnect
19. IPS Basics & Initialization
o Users
o Interface types
o CLI
o IPS Setup
20. SPAN & RSPAN
21. IPS Deployment Modes
o Promiscuous
o Inline
o VLAN Groups
22. IPS Signatures & Event Actions
o Signature Engines
o Overrides
o Filtering
23. Global Correlation
24. WSA
o CLI
o GUI
o URL Filtering
o Web Usage Controls
o AVC
o Malware Scanning
o Web Proxy (Explicit and Transparent)
o L4 Traffic Monitor
o Interfaces
o WCCP
o Policies
o Identities
o Policy Actions
o Web Reputation
o Authentication
o AD integration
o HTTPS Decryption
o Proxy Bypass
25. TrustSec, ISE & Profiling
o Overview
o Features
o Profiling process & Probes
o Device Sensor
26. 802.1x Fundamentals
o Port Modes & Types
o MAB
o Flexible Authentication
27. Wired 802.1x
28. Layer 2 Security-------------------------------------------------------15/01/15
o MAC Spoofing
o CAM Flooding
o VLAN Hopping
o STP Attacks
o DHCP Attacks
o ARP Spoofing
o IP Spoofing
29. Control Plane Security
o Routing Protocol Authentication
o Control Plane Policing
o Control Plane Protection
o CPPr sub interfaces
o Port Filtering
o Queue Thresholding
30. Management Plane Security
o User EXEC protection
o Privileged EXEC protection
o Role-Based CLI Views
o VTY Access Control
o Login Enhancement
o Management Plane Protection

Cisco Ccna 200-301 Study Guide, 2024
78% (9)
Cisco Ccna 200-301 Study Guide, 2024
451 pages
CCNP and CCIE Enterprise Core ENCOR 350-401 Exam Cram Indice
No ratings yet
CCNP and CCIE Enterprise Core ENCOR 350-401 Exam Cram Indice
10 pages
SANS 512 Indexes
No ratings yet
SANS 512 Indexes
29 pages
NSP-NOC Team Proposal
100% (1)
NSP-NOC Team Proposal
19 pages
Application Guide 200731A1 BBMD RevA
No ratings yet
Application Guide 200731A1 BBMD RevA
8 pages
CCIE Security Bootcamp v6
100% (2)
CCIE Security Bootcamp v6
256 pages
CCNP Security PDF
No ratings yet
CCNP Security PDF
310 pages
CCIE Security V4
100% (1)
CCIE Security V4
6 pages
CCNA Security Syllabus
No ratings yet
CCNA Security Syllabus
3 pages
CCIE Security Lab Exam v3
No ratings yet
CCIE Security Lab Exam v3
11 pages
1737378457422
No ratings yet
1737378457422
135 pages
Networking CCNA CCNP Cyber Security (2) (1)
No ratings yet
Networking CCNA CCNP Cyber Security (2) (1)
20 pages
1-Introduction To Networks: The Open Systems Interconnection Specifications
No ratings yet
1-Introduction To Networks: The Open Systems Interconnection Specifications
12 pages
Slide 3 15 2020
No ratings yet
Slide 3 15 2020
114 pages
Implementing Cisco Network Security Exam (210-260)
No ratings yet
Implementing Cisco Network Security Exam (210-260)
4 pages
Basic To Advance SDWAN Training Updated
No ratings yet
Basic To Advance SDWAN Training Updated
13 pages
YES NO Completed Ccie Security Road Map Date Sr. # Delay
No ratings yet
YES NO Completed Ccie Security Road Map Date Sr. # Delay
2 pages
CCNA
No ratings yet
CCNA
11 pages
CCNA 1 v6.0 Study Material - Chapter 1: Explore The Network
No ratings yet
CCNA 1 v6.0 Study Material - Chapter 1: Explore The Network
97 pages
Module 6 Securing Network Devices
No ratings yet
Module 6 Securing Network Devices
52 pages
CCNA 200-301 Official Cert Guide, Volume 2-236
No ratings yet
CCNA 200-301 Official Cert Guide, Volume 2-236
3 pages
Network Essentials CCNA CAMEROON
No ratings yet
Network Essentials CCNA CAMEROON
4 pages
Csf3223 Networking Final Exam Notes - 240723 - 001609
No ratings yet
Csf3223 Networking Final Exam Notes - 240723 - 001609
26 pages
List
No ratings yet
List
9 pages
CCNA Short Notes
No ratings yet
CCNA Short Notes
8 pages
CCNA 200-301 OCG Study Notes
No ratings yet
CCNA 200-301 OCG Study Notes
86 pages
Accessing The WAN
No ratings yet
Accessing The WAN
10 pages
CCNA Demo ) Class
No ratings yet
CCNA Demo ) Class
95 pages
CCNP ENCOR Study Note
100% (1)
CCNP ENCOR Study Note
15 pages
CCNA Exploration-Accessing The WAN-IRG
No ratings yet
CCNA Exploration-Accessing The WAN-IRG
10 pages
CCNA 200-301 Official Cert Guide, Volume 2-8
No ratings yet
CCNA 200-301 Official Cert Guide, Volume 2-8
3 pages
Cisco
No ratings yet
Cisco
60 pages
CCIEEI v1.1 Final - Clean PDF
No ratings yet
CCIEEI v1.1 Final - Clean PDF
6 pages
Syllabus - CCNA Security
No ratings yet
Syllabus - CCNA Security
4 pages
Cisco - All in One PDF
No ratings yet
Cisco - All in One PDF
4 pages
Portuguese CCNA 7 Seguranca LAN
No ratings yet
Portuguese CCNA 7 Seguranca LAN
41 pages
Cisco Certified Network Associate Front Page
No ratings yet
Cisco Certified Network Associate Front Page
5 pages
SANS 512 Indexes
No ratings yet
SANS 512 Indexes
29 pages
CCIE Security Lab Exam Topics v4.0 System Hardening and Availability
No ratings yet
CCIE Security Lab Exam Topics v4.0 System Hardening and Availability
3 pages
CCNA7 LAN Security Module
No ratings yet
CCNA7 LAN Security Module
48 pages
Icnd 1: Cisco Certification Mapped Program - Ccna at Tcs Ion Training Partner
No ratings yet
Icnd 1: Cisco Certification Mapped Program - Ccna at Tcs Ion Training Partner
2 pages
CompTIA Network+ (N10-009)
No ratings yet
CompTIA Network+ (N10-009)
8 pages
Blueprint CCNA 200-120
No ratings yet
Blueprint CCNA 200-120
34 pages
(eBook PDF) Introduction to Network Security download
100% (1)
(eBook PDF) Introduction to Network Security download
31 pages
CCNA Security 640-554
No ratings yet
CCNA Security 640-554
18 pages
Ccna Security: Exam Description
No ratings yet
Ccna Security: Exam Description
5 pages
ProductInfo 05-08-2020 0458
No ratings yet
ProductInfo 05-08-2020 0458
7 pages
CCNA 200-301 Syllabus
100% (1)
CCNA 200-301 Syllabus
6 pages
Network Fundamental
No ratings yet
Network Fundamental
124 pages
JSPX IG 10.a-R
No ratings yet
JSPX IG 10.a-R
334 pages
Toips New 1 Ccna 301
No ratings yet
Toips New 1 Ccna 301
2 pages
Network+ Section 2 Notes
No ratings yet
Network+ Section 2 Notes
4 pages
Ccna 640-802 and All Other Cisco Networking Links - Including CCSP, CCNP, and Many More
100% (26)
Ccna 640-802 and All Other Cisco Networking Links - Including CCSP, CCNP, and Many More
4 pages
Routing Route Maps Prefix List PBR Route Redistribution Mpls
No ratings yet
Routing Route Maps Prefix List PBR Route Redistribution Mpls
24 pages
IP Routing Primer Plus TQW - Darksiderg
No ratings yet
IP Routing Primer Plus TQW - Darksiderg
505 pages
Index: Licensed Product Not For Resale
No ratings yet
Index: Licensed Product Not For Resale
6 pages
CCNA Exam Focus: Study Guide with Practice Tests
From Everand
CCNA Exam Focus: Study Guide with Practice Tests
SUJAN
No ratings yet
What is TCP/IP: Basic Concepts to More Advanced.
From Everand
What is TCP/IP: Basic Concepts to More Advanced.
Scott Markham
No ratings yet
CCNA Certification All-in-One For Dummies
From Everand
CCNA Certification All-in-One For Dummies
Silviu Angelescu
5/5 (1)
A Practical Guide Wireshark Forensics
From Everand
A Practical Guide Wireshark Forensics
alasdair gilchrist
5/5 (4)
CCNA Certification Study Guide Volume 2: Exam 200-301 v1.1
From Everand
CCNA Certification Study Guide Volume 2: Exam 200-301 v1.1
Todd Lammle
5/5 (1)
Alcatel-Lucent Service Routing Architect (SRA) Self-Study Guide: Preparing for the BGP, VPRN and Multicast Exams
From Everand
Alcatel-Lucent Service Routing Architect (SRA) Self-Study Guide: Preparing for the BGP, VPRN and Multicast Exams
Glenn Warnock
No ratings yet
Vestas Client VPN Installation & User Guide
No ratings yet
Vestas Client VPN Installation & User Guide
8 pages
Steps, How To Setup Your New VM With Iou-Web: Written by Uldisd
100% (1)
Steps, How To Setup Your New VM With Iou-Web: Written by Uldisd
11 pages
CN_Unit_2
No ratings yet
CN_Unit_2
88 pages
NAT Theory
No ratings yet
NAT Theory
2 pages
NetDefendOS 11-04-01 Firewall UserManual
No ratings yet
NetDefendOS 11-04-01 Firewall UserManual
912 pages
IAD (DV-2010) : USER Manual
No ratings yet
IAD (DV-2010) : USER Manual
46 pages
Paradise Datacom Q-Flex-400 IP Satellite Modem Data Sheet 215635 12-11-2017
No ratings yet
Paradise Datacom Q-Flex-400 IP Satellite Modem Data Sheet 215635 12-11-2017
6 pages
3CRWDR101A-75 V1.12.01a RealeaseNote
No ratings yet
3CRWDR101A-75 V1.12.01a RealeaseNote
7 pages
All Technical Interview Questions & Answers. - Linux
No ratings yet
All Technical Interview Questions & Answers. - Linux
6 pages
Network Address Translation PDF
No ratings yet
Network Address Translation PDF
8 pages
CCNA Routing & Switching Lab Workbook - Free CCNA Workbook
0% (1)
CCNA Routing & Switching Lab Workbook - Free CCNA Workbook
3 pages
H646GM-V Datasheet
No ratings yet
H646GM-V Datasheet
4 pages
Ccna 2018
No ratings yet
Ccna 2018
7 pages
Brkops 2857
No ratings yet
Brkops 2857
56 pages
AAiT Network All Chapters
No ratings yet
AAiT Network All Chapters
53 pages
Latihan Exam MTCNA - 1
No ratings yet
Latihan Exam MTCNA - 1
20 pages
Acl
No ratings yet
Acl
15 pages
BEEC 2383 Chapter 5 - Part 1 (Introduction Network Layer)
No ratings yet
BEEC 2383 Chapter 5 - Part 1 (Introduction Network Layer)
78 pages
Free Computers Flashcards About Cisco CCNA
No ratings yet
Free Computers Flashcards About Cisco CCNA
7 pages
Cisco FTD 6.1 Video Bundle
No ratings yet
Cisco FTD 6.1 Video Bundle
4 pages
ThinkMo CCIE EI Lab v1.0 Module1 Version 4.2 Resource Design Ignore PDF
No ratings yet
ThinkMo CCIE EI Lab v1.0 Module1 Version 4.2 Resource Design Ignore PDF
25 pages
Ruijie RG-EG Implementation Cookbook (V1.0)
No ratings yet
Ruijie RG-EG Implementation Cookbook (V1.0)
136 pages
ROX User Guide RX1000 PDF
No ratings yet
ROX User Guide RX1000 PDF
341 pages
Fortigate High Availability
No ratings yet
Fortigate High Availability
40 pages
Prisma Sd Wan Admin
No ratings yet
Prisma Sd Wan Admin
572 pages
Virtual Application Delivery Controllers
No ratings yet
Virtual Application Delivery Controllers
13 pages
Brkarc-2749 (2018)
No ratings yet
Brkarc-2749 (2018)
152 pages
Assignment 2
No ratings yet
Assignment 2
3 pages

ASA Basics & Initialization

Uploaded by

ASA Basics & Initialization

Uploaded by

1.

ASA Basics & Initialization

You might also like