Anda di halaman 1dari 15

Securing Networks

with PIX and ASA


v5.0

2007 Cisco Systems, Inc. All rights reserved.

SNPA v5.01

Securing Networks
with PIX and ASA
v5.0
Course Introduction

2007 Cisco Systems, Inc. All rights reserved.

SNPA v5.00-2

Learner Skills and Knowledge


Cisco CCNA certification or the equivalent knowledge
Basic knowledge of the Windows operating system
Familiarity with networking and security terms
and concepts

2007 Cisco Systems, Inc. All rights reserved.

SNPA v5.03

Course Goal
To provide the learner with the skills necessary
to configure, maintain, and operate Cisco ASA and
PIX security appliances.

Securing Networks with PIX and ASA v5.0

2007 Cisco Systems, Inc. All rights reserved.

SNPA v5.04

Course Flow
Day 1

Day 2

Day 3

Day 4

Lesson 5:
Using ACLs and
Content Filtering

Lesson 9:
Configuring the
Cisco Modular
Policy Framework

Lesson 13:
Configuring Cisco
Security Appliances
for WebVPN

Lesson 10:
Configuring
Advanced Protocol
Handling

Lesson 14:
Configuring
Transparent
Firewall Mode

Day 5

Course Introduction

A
M

Lesson 1:
Introducing Cisco
Security Appliance
Technology and
Features
Lesson 2:
Introducing Cisco
ASA and PIX
Security Appliance
Families

Lesson 6:
Configuring Object
Grouping

Lesson 17:
Using Cisco ASDM
Lesson 18:
Introducing Cisco
ASA SSMs

Lunch
P
M

Lesson 3:
Getting Started with
Cisco Security
Appliances
Lesson 4:
Configuring
Translations and
Connection Limits

2007 Cisco Systems, Inc. All rights reserved.

Lesson 7:
Configuring AAA
Lesson 8:
Switching and
Routing on Cisco
Security Appliances

Lesson 11:
Configuring VPNs
Lesson 12:
Configuring
Security Appliance
Remote Access
Using Cisco Easy
VPN

Lesson 15:
Configuring
Security Contexts
Lesson 16:
Configuring Failover

Lesson 19:
Managing Security
Appliances

SNPA v5.05

Cisco Icons and Symbols

Cisco ASA Security


Appliance

Cisco PIX
Security
Appliance

Cisco IOS Router

Switch

IP Phone

Cisco Secure
ACS v4.0
Server

PC

Laptop

Server
Web, FTP, etc.

Ethernet Link

VPN Tunnel

Network
Cloud

2007 Cisco Systems, Inc. All rights reserved.

SNPA v5.06

Cisco Career Certifications


Cisco Certifications

www.cisco.com/go/certifications
2007 Cisco Systems, Inc. All rights reserved.

SNPA v5.07

Cisco Career Certifications: FY07


Cisco Certified Security Professional
Expand Your Professional Options
and Advance Your Career
Professional level recognition in Cisco Certified Security Professional
Recommended Training Through
Cisco Learning Partners

Expert
CCIE

Securing Cisco Network Devices (SND)


Securing Networks with Cisco Routers and Switches
(SNRS)

Professional

Securing Networks with PIX and ASA (SNPA)

CCSP

Associate
CCNA
Cisco Certified Security Professional
2007 Cisco Systems, Inc. All rights reserved.

Implementing Cisco Intrusion Prevention Systems (IPS)


Implementing Management and Monitoring Security
Specialization (MMSS)

www.cisco.com/go/certifications
SNPA v5.08

Cisco Certified Security Professional


Certification PathFY07
Enhance Your Cisco Certifications
and Validate Your Areas of Expertise
Cisco CCSP Specialists
Cisco Firewall Specialist

Recommended Training Through Cisco Learning


Partners
Prerequisite: Valid CCNA Certification
Securing Cisco Network Devices (SND)
Securing networks with PIX and ASA (SNPA)

Cisco IPS Specialist

Recommended Training Through Cisco Learning


Partners
Prerequisite: Valid CCNA Certification
Securing Cisco Network Devices (SND)
Implementing Cisco Intrusion Prevention Systems (IPS)

Cisco VPN Specialist

Recommended Training Through Cisco Learning


Partners
Prerequisite: Valid CCNA Certification
Securing Network Routers and Switches (SNRS)
Adaptive Security Appliance Virtual Private Networks (ASAVPN)

2007 Cisco Systems, Inc. All rights reserved.

SNPA v5.09

Cisco Certified Security Professional


Certification PathFY07 (Cont.)
Enhance Your Cisco Certifications
and Validate Your Areas of Expertise
Cisco CCSP Specialists
Cisco MMSS Specialist

Recommended Training Through Cisco Learning


Partners
Prerequisite: Valid CCNA Certification
Securing Cisco Network Devices (SND)
Management and Monitoring Security (MMSS)

Cisco NAC Specialist

Recommended Training Through Cisco Learning


Partners
Prerequisite: Valid CCNA Certification
Securing Cisco Network Devices (SND)
Implementing Cisco NAC Appliance (CANAC)

Cisco ISS Specialist

Recommended Training Through Cisco Learning


Partners
Prerequisite: Valid CCNA Certification
Securing Cisco Network Devices (SND)
Information Security Specialist (ISS)

2007 Cisco Systems, Inc. All rights reserved.

SNPA v5.010

Segue Slide,
Introductions
Size 30

2007 Cisco Systems, Inc. All rights reserved.

SNPA v5.011

Participant Responsibilities
Student responsibilities
Complete prerequisites
Participate in lab exercises
Ask questions
Provide feedback

2007 Cisco Systems, Inc. All rights reserved.

SNPA v5.012

General Administration
Class-related

Facilities-related

Sign-in sheet
Length and times

Participant materials
Site emergency procedures

Break and lunch room locations


Attire

Restrooms
Telephones/faxes

Cell phones/pagers

2007 Cisco Systems, Inc. All rights reserved.

SNPA v5.013

Participant Introductions
Your name
Your company
Prerequisite skills
Brief history
Objective

2007 Cisco Systems, Inc. All rights reserved.

SNPA v5.014

2007 Cisco Systems, Inc. All rights reserved.

SNPA v5.015