You are here
SEC0228 - ASA Firepower 6.0 SSL Decryption (Part 1)
Difficulty Level:
Lab Document:
<Please login to see the content>
Category:
Security
The video walks you through configuration on Cisco ASA FirePower 6.0 for traffic decryption. We will look at decrypting traffic for both inbound and outbound. Any certificate generation, public and private key import will be shown. We will test our configuration using executable file inspection and compare the results when Firepower is configured with and without SSL policy.
Part 1 of this video covers inbound traffic decryption
Topic:
-
Inbound Traffic Decryption
- Public and Private Key Import
- Decrypt - Known Key
-
Outbound Traffic Decryption
- OpenSSL CSR Generation
- Certificate Signing
- Decrypt-Resign
- ASA Static Object NAT
- File Policy
- SSL Policy
- Access Control Policy
About Author
Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.