acl

The video walks you through advance configuration of Cisco VSG. Based on basic setup on the previous video, we will split our test servers into zones to construct and simulate a multi-tier web services environment by using complex ACL policies. You will be able to see how logical separation can be achieved while having all the hosts residing on the same subnet. 

The video introduces you to the concept of Security Profile/Policy on Cisco VSG, via VNMC web interface. This is where the configuration take places for controlling and restricting traffic. We will start off with a very simple ACL policy to allow all traffic between the hosts, and concentrate on how to get a connection established between VSG and VEM over vPath. At the end of the lab, we will have a functioning setup of VSG.

The video walks you through two basic security features on Cisco Nexus 1000V: Access Control List (ACL) and Port-Security. We will configure ACL on a host-facing port-profile and have any denied traffic being logged and sent to a Syslog server. We will enable Port-Security to limit the number of MAC address and test our configuration by performing MAC flooding attack.

• Access Control List (ACL)
• Port-Security
• Errdisable Recovery
• MAC Flooding (Macof Tool)