| This Authorized Cisco course is the follow on from SNAF, covering advanced topics of Adaptive Security.
|
|
|
| At the end of this course, you will be able to:
|
 |
Use advanced NAT features such as policy-based NAT
|
|
Use advanced modular policy framework for deep packet inspection of application protocols such as HTTP and FTP
|
|
Understand how the multimedia protocols are handled and configured by the modular policy framework of the security appliance at Layer 3, 4, and 7
|
|
Configure the security appliance to segment traffic with VLANs
|
|
Configure dynamic routing capabilities of the appliance
|
|
Configure the security appliance to route multicast traffic
|
|
Use advanced IPSec VPN technologies such as peer authentication using digital certificates
|
|
Understand the steps necessary to configure the ASA as a CA Server
|
|
Configure the IPSec VPN Client using digital certificates
|
|
Configure the advanced Easy VPN Server features of the ASA
|
|
Understand the necessary configuration for the ASA 5505 to be a VPN hardware client
|
|
Understand the steps necessary to configure QoS for VPN traffic SSL VPN features and capabilities of the security appliance
|
|
Enable clientless SSL VPNs with the security appliance
|
|
Enable AnyConnect SSL VPN Client with the security appliance
|
|
Enable the Cisco Secure Desktop with the security appliance to increase the security posture of SSL VPN connections
|
|
Enable Dynamic Access Policy with the Cisco Secure Desktop
|
|
Understand the characteristics of the services modules for the ASA
|
|
Configure, inspect, and filter traffic with the Content Security and Control SSM
|
|
Configure the AIP-SSM to identify and alert for common attacks |
| Module 1
|
|
|
|
Lesson 1: Applying NAT 0 and Policy NAT
|
|
|
| |
| Lab 1-1: Implementing Advanced NAT
|
|
|
|
|
|
|
| Module 2
|
|
|
|
Lesson 1: Applying the Cisco Module Policy Framework
|
|
|
|
Lesson 2: Handling Advanced Protocols
|
|
|
| |
| Lab 2-1: Implementing MPF for FTP and HTTP
|
|
|
|
|
|
|
| Module 3
|
|
|
|
Lesson 1: Switching with VLANs
|
|
|
|
Lesson 2: Routing with Dynamic Protocols
|
| |
| Lab 3-1: Dynamic Routing with EIGRP and OSPF
|
|
|
|
|
|
|
| Module 4
|
|
Lesson 1: Understanding IPsec and Digital Certificates
|
|
|
|
Lesson 2: Configuring Site to Site VPNs with Digital Certificates
|
| |
| Lab 4-1: Site-to-Site with Digital Certificates
|
|
|
|
Lesson 3: Configuring the Cisco VPN Client
|
|
|
|
Lesson 4: Configuring Remote Access VPNs with Digital Certificates
|
| |
| Lab 4-2: Remote Access with Digital Certificates
|
|
|
|
Lesson 5: Configuring Advanced Remote Access Features and Policy
|
|
|
|
Lesson 6: Configuring the ASA 5505 as an Easy VPN Hardware Client
|
| |
| Lab 4-3: ASA 5505 Easy VPN Hardware Client
|
|
|
|
Lesson 7: IPsec VPNs and QoS
|
|
|
|
|
|
|
| Module 5
|
|
|
|
Lesson 1: Overview of SSL VPN Technology
|
|
|
|
Lesson 2: Configuring Clientless SSL VPNs
|
| |
| Lab 5-1: Clientless SSL VPNs
|
|
|
|
Lesson 3: Configuring Full Network Access SSL VPNs
|
| |
| Lab 5-2: SSL VPNs with AnyConnect Client
|
|
|
|
Lesson 4: Cisco Secure Desktop
|
|
|
|
Lesson 5: Securing the Desktop with CSD and DAP
|
| |
| Lab 5-3: Cisco Secure Desktop and Dynamic Access Policy
|
|
|
|
|
|
|
| Module 6
|
|
Lesson 1: Examining the SSMs
|
|
|
|
Lesson 2: CSC-SSM: Getting Started
|
|
|
|
Lesson 3: AIP-SSM: Getting Started
|
| |
| Lab 6-1: Initializing AIP-SSM |
London / Rosebery Avenue