View Cart
0 Items | Total: US$0.00
Welcome,      Register

You are here

n1kv

SEC0071 - ASA 1000V Device Profile and Edge Firewall (VNMC Mode)

The video looks into concepts of Device Profile, Edge Device Profile, and Edge Firewall on Cisco ASA 1000V in VNMC mode. We will configure device general global settings similarly to Cisco VSG through a Device Profile, and ASA 1000V-specific global settings through an Edge Device Profile, both of which are building blocks to an Edge Firewall. Our ASA 1000V that was created in the previous video will be assigned to an Edge Firewall pool, and we will perform basic testing with Syslog and DHCP.
Notes:
Rating: 
0
No votes yet
Difficulty Level: 
3

SEC0070 - ASA 1000V Installation (VNMC Mode)

The video walks you through an installation process of redundant ASA 1000V in VNMC mode from .ova file. We will create VLAN and port-profiles on Cisco Nexus 1000V for interfaces on ASA 1000V. At the end of the lab, we will register the ASA 1000V to a VNMC and be ready for configuration.
Notes:
  • ASA 1000V has four main interfaces
    • Outside
    • Inside
    • Management
    • Failover
  • ASA 1000V may have additional logical security profile interfaces 
Rating: 
0
No votes yet
Difficulty Level: 
2

SEC0066 - VSG Layer 3 Installation

The video walks you through an installation process of redundant VSG in L3 mode from .ova file. Manual install option will be selected for the primary VSG, while the secondary will be installed with the installer. We will create port-profiles on Cisco Nexus 1000V for interfaces on VSG. At the end of the lab, we will have VSG registered with VNMC and be ready for configuration.

Rating: 
0
No votes yet
Difficulty Level: 
2

SEC0065 - Virtual Network Management Center (VNMC) Installation

The video walks you through an installation process of Cisco VNMC. To build foundation of our system, we will register VNMC to vCenter and register VSM to VNMC. We will also create a simple organization hierarchy for our virtual datacenter in preparation for our future labs. This video is applicable to both Cisco VSG and ASA 1000V.

Topic:
  • VNMC Installation
  • VSM
  • vCenter

Recommeded Videos:

Rating: 
0
No votes yet
Difficulty Level: 
2

SEC0064 - Introduction to VSG and VNMC

The video introduces you to the concepts behind Cisco VSG and VNMC. We will help you understand how VSG works with other components such as VNMC, VSM and VEM to provide policy-based security within an IP subnet. This video serves as a prerequisite to our future VSG labs. Since this is an introduction-to-technology video, there will be no lab.

Topic:
  • VSG
  • VNMC
  • VSM
  • VEM
  • vPath
Rating: 
0
No votes yet
Difficulty Level: 
1

RS0034 - Nexus 1000V VXLAN

The video looks into Virtual Extension LAN (VXLAN) support on Cisco Nexus 1000V. VXLAN allows VLAN ID to be extended to 24 bits, or in other words, essentially increases number of available VLAN from 4096 to more than 16 million VLAN. We will configure VXLAN on port-profile. In this lab, we intentionally have VEM control interfaces separated by layer 3 to demonstrate MAC-in-IP encapsulation provided by VXLAN to extend an isolated layer 2 domain across a routable and multicast-enabled network.

Rating: 
5
Average: 5 (1 vote)
Difficulty Level: 
0

RS0033 - Nexus 1000V Cisco TrustSec with ASA 9.1

The video looks into Cisco TrustSec feature on Cisco Nexus 1000V. We will configure port-profiles to assign SGT to hosts, and have SGT-to-IP mapping sent to an ASA firewall over a SXP connection for policy enforcement. We will see how we can construct an ACL on the ASA to permit or deny traffic based on SGT value using a object-group-security. 

Rating: 
5
Average: 5 (3 votes)
Difficulty Level: 
0

RS0032 - Nexus 1000V Private Vlan

The video looks at how we can achieve network separation at layer 2 with private vlan on Cisco Nexus 1000V. We will go through the concept of Primary, Secondary, Isolated and Community VLANs, and experiment with server communication by placing the servers on different vlan. At the end of the video, we will also go through a scenario where we have two sets of private vlan. Private VLAN allows hosts to remain segregated on the same IP subnet. 

Rating: 
5
Average: 5 (1 vote)
Difficulty Level: 
0

RS0031 - Nexus 1000V QoS

The video presents three main QoS building blocks on Cisco Nexus 1000V: Marking, Policing, and Queuing. We will be applying QoS to Port-Profile to mark RDP traffic, and enforcing policing based on matching DSCP value. Any traffic exceeding allowable rate will be either drop or marked down. We will attempt to provide guaranteed bandwidth to both Nexus and VMware control traffic. DSCP values will be analyzed using Wireshark packet capture.

Rating: 
5
Average: 5 (1 vote)
Difficulty Level: 
0

RS0030 - Nexus 1000V DHCP Snooping, DAI, and IP Source Guard

The video looks into three advanced security features on Cisco Nexus 1000V: DHCP Snooping, Dynamic ARP Inspection, and IP Source Guard. We will be testing each of the features with security audit tools, and we will be able to see how these features protect us from DHCP, ARP and source IP spoofing attacks.

Rating: 
5
Average: 5 (1 vote)
Difficulty Level: 
0

Pages

Subscribe to RSS - n1kv