View Cart
0 Items | Total: US$0.00
Welcome,      Register

You are here

Home

asa

SEC0072 - ASA 1000V Basic Edge Security Profile and Policies (VNMC Mode)

The video walks you through basic configuration of Edge Security Profile and Policies on Cisco ASA 1000V in VNMC mode. We will demonstrate the concept of Security Profile interfaces by applying different security policies based on Ingress ACL and NAT to our Web and DB servers. We will also go through configuration on a Nexus 1000V to have a VEM communicate with the ASA 1000V and enforce the security policies on a port-profile. The lab ends with connectivity testing to verify our configurations.
Note:
Rating: 
0
No votes yet
Difficulty Level: 
3
Tag: 
asa 1000v
asa
vnmc
n1kv
nexus 1000v
firewall
NAT
acl

SEC0071 - ASA 1000V Device Profile and Edge Firewall (VNMC Mode)

The video looks into concepts of Device Profile, Edge Device Profile, and Edge Firewall on Cisco ASA 1000V in VNMC mode. We will configure device general global settings similarly to Cisco VSG through a Device Profile, and ASA 1000V-specific global settings through an Edge Device Profile, both of which are building blocks to an Edge Firewall. Our ASA 1000V that was created in the previous video will be assigned to an Edge Firewall pool, and we will perform basic testing with Syslog and DHCP.
Notes:
Rating: 
0
No votes yet
Difficulty Level: 
3
Tag: 
asa 1000v
asa
vnmc
n1kv
nexus 1000v
firewall

SEC0070 - ASA 1000V Installation (VNMC Mode)

The video walks you through an installation process of redundant ASA 1000V in VNMC mode from .ova file. We will create VLAN and port-profiles on Cisco Nexus 1000V for interfaces on ASA 1000V. At the end of the lab, we will register the ASA 1000V to a VNMC and be ready for configuration.
Notes:
  • ASA 1000V has four main interfaces
    • Outside
    • Inside
    • Management
    • Failover
  • ASA 1000V may have additional logical security profile interfaces 
Rating: 
0
No votes yet
Difficulty Level: 
2
Tag: 
asa 1000v
asa
vnmc
n1kv
nexus 1000v
firewall
installation

RS0033 - Nexus 1000V Cisco TrustSec with ASA 9.1

The video looks into Cisco TrustSec feature on Cisco Nexus 1000V. We will configure port-profiles to assign SGT to hosts, and have SGT-to-IP mapping sent to an ASA firewall over a SXP connection for policy enforcement. We will see how we can construct an ACL on the ASA to permit or deny traffic based on SGT value using a object-group-security. 

Rating: 
5
Average: 5 (3 votes)
Difficulty Level: 
0
Tag: 
n1kv
nexus 1000v
nexus
asa
sgt
trustsec
sxp

SEC0062 - ISE 1.1 Security Group Access (SGA) with ASA 9.1 TrustSec (Part 1)

The video demonstrates Cisco TrustSec support on Cisco ASA 9.1 with Cisco ISE. This lab is based on a 3750 switch that is not TrustSec hardware-capable but able to communicate IP-to-SGT mapping via SGT Exchange Protocol (SXP) to the ASA. We will be constructing an ACL based on SGT using the new Security object group.

Rating: 
5
Average: 5 (2 votes)
Difficulty Level: 
0
Tag: 
ISE
wired
asa
sga
sgt
trustsec
sxp

SEC0017 - ASA EZVPN with Pre-Shared Key & Certificate

The video walks you through configuration of Easy VPN (EZVPN) with Pre-shared key and certificate authentication on a Cisco headend ASA firewall. The hardware client router is running Client Mode and configured to automatically connect using a locally stored credential. This video is a counterpart of SEC0015 and SEC0016 with the headend router. Here we introduce the concept of 'group-policy' and 'tunnel-group' that are unique to the ASA, while most crypto command syntax is very similar to those on a router.

Rating: 
5
Average: 5 (1 vote)
Difficulty Level: 
0
Tag: 
ezvpn
ipsec
pre-shared key
certificate
asa
xauth

SEC0008 - ASA 8.3 8.4 NAT Migration Recommendation

The video combines the knowledge from our two previous videos on Object NAT and Twice NAT, and provides some guidelines on how to use them together on a single NAT table. We also discuss about pre-8.3 migration strategies and how the legacy command syntax (eg. nat, global, static, access-list) can be mapped to the new. We finish off the video with an experiment on the placement of destination NAT statement on the NAT table, and note its significance. We hope that you will have a better understanding on ASA 8.3 NAT by the end of this video.

Rating: 
0
No votes yet
Difficulty Level: 
2
Tag: 
NAT
asa

SEC0007 - ASA 8.3 8.4 Twice NAT

The video looks at how to configure Twice NAT on a Cisco ASA 8.3. We go through NAT configuration syntax for different type of NAT scenarios and examine some characteristics specific to Twice NAT.

Rating: 
0
No votes yet
Difficulty Level: 
2
Tag: 
NAT
asa

SEC0006 - ASA 8.3 8.4 Object NAT

The video looks at how to configure Object NAT on a Cisco ASA 8.3. We go through NAT configuration syntax for different type of NAT scenarios and examine some characteristics specific to Object NAT.

Rating: 
0
No votes yet
Difficulty Level: 
2
Tag: 
NAT
asa

Pages

Subscribe to RSS - asa