Implementing Advanced Cisco ASA Security 1.0 (SASAA 1.0)

Request a Quote for this class

About this Course

This course provides Cisco ASA firewall administrators and engineers with update training on the main post-8.4.1 release Cisco ASA features including most 9.x features such as CX and Clustering.  The course includes detailed coverage of Cisco ASA 5500-X Series Next-Generation Firewalls, the Cisco Catalyst 6500 Series ASA Services Module (ASASM), and teh ASA 1000v Cloud Firewall.  It also provides a hands-on experience with installing and setting up the Cisco IPS and Cisco ASA CX software modules, implementing Identity Firewall policies with Cisco CDA, implementing CX policies, and integrating Cisco Cloud Web Security.

Audience Profile

This course is intended for network engineers supporting Cisco ASA 9.x implementations

At Course Completion

Upon successful completion of this course, students should be able to:

  • Explain the features of Cisco ASA 5500-X Series Next-Generation Firewalls, ASASM, and ASA 1000v Cloud Firewall, and install and set up the Cisco IPS and Cisco ASA CX software modules
  • Implement Cisco ASA Identity Firewall policies by using Cisco CDA and Cisco ASA
  • Implement Cisco ASA CX policies
  • Implement Cisco ASA and Cisco Cloud Web Security integration
  • Describe the multicontext enhancements in Cisco ASA Software Release 9.0
  • Describe the IPv6 features in Cisco ASA Software Release 9.0
  • Describe Security Group Firewall support in Cisco ASA Software Release 9.0
  • Implement a Cisco ASA cluster

Prerequisites

It is recommended that prior to enrollment, students have successfully completed FIREWALL or have equivalent knowledge of the Cisco ASA.

Course Outline

Module 1: Cisco ASA Product Family

  • Lesson 1: Introducing the Cisco ASA 5500-X Series Next Generation Firewalls

  • Lesson 2: Installing Cisco ASA 5500-X Series IPS Software Module

  • Lesson 3: Introducing the Cisco ASASM

  • Lesson 4: Introducing the Cisco ASA 1000V Cloud Firewall

Module 2: Cisco ASA Identity Firewall

  • Lesson 1: Describing the Cisco ASA Identity Firewall Solution

  • Lesson 2: Setting Up Cisco CDA

  • Lesson 3: Configuring Cisco CDA

  • Lesson 4: Configuring Cisco ASA Identity Firewall

  • Lesson 5: Verifying and Troubeshooting Cisco Identitiy Firewall

Module 3: Cisco ASA CX

  • Lesson 1: Introducing Cisco ASA CX (Next Generation Firewall)

  • Lesson 2: Describing the Cisco ASA CX Management Architecture

  • Lesson 3: Installing the Cisco Off-Box PRSM and Cisco ASA CX

  • Lesson 4: Redirecting Cisco ASA-to-Cisco ASA CX Traffic

  • Lesson 5: Performing Cisco PSRM Device Discovery and Configuration Import

  • Lesson 6: Configuring Cisco ASA CX Policy Objects

  • Lesson 7: Configuring Cisco ASA CX Access Policies

  • Lesson 8: Configuring Cisco ASA CX Identity Policies

  • Lesson 9: Configuring Cisco ASA CX Decryption Policies

  • Lesson 10: Licensing Cisco ASA CX and Cisco PRSM

  • Lesson 11: Monitoring Cisco ASA CX

  • Lesson 12: Using Cisco PRSM for Administration

  • Lesson 13: Troubleshooting Cisco ASA CX

Module 4: Cisco ASA Cloud Web Security Integration

  • Lesson 1: Introducing Cisco ASA with Cisco Cloud Web Security

  • Lesson 2: Licensing Cisco ASA with Cisco Cloud Web Security

  • Lesson 3: Configuring Cisco ASA with Cisco Cloud Web Security

  • Lesson 4: Verifying Cisco ASA and Cloud Web Security Operations

Module 5: Cisco ASA IPv6 Enhancements

  • Lesson 1: Describing the Cisco ASA IPv4 and IPv6 Unified ACL

  • Lesson 2: Describing Other Cisco ASA IPv6 Support Enhancements

Module 6: Cisco ASA Security Group Firewall

  • Lesson 1: Introducing Cisco Security Group Tagging

  • Lesson 2: Configuring Cisco ASA Security Group Firewall

Module 7: Cisco ASA Multicontext Enhancements

  • Lesson 1: Describing Cisco ASA Multicontext Mode

  • Lesson 2: Describing Multicontext Enhancements in Cisco ASA Software Release 9.0

Module 8: Cisco ASA Cluster

  • Lesson 1: Describing Cisco ASA Cluster Features

  • Lesson 2: Describing Cisco ASA Cluster Terminology and Data Flows

  • Lesson 3: Using the CLI to Configure a Cisco ASA Cluster

  • Lesson 4: Using Cisco ASDM to Configure a Cisco ASA Cluster

  • Lesson 5: Verifying Cisco ASA Cluster Operations

  • Lesson 6: Troubleshooting a Cisco ASA Cluster

  Labs:

  • Lab 1-1: Remote Lab Environment Access
  • Lab 1-2: Cisco ASA 5500-X IPS and CX Software Module Installation and Setup
  • Lab 2-1: Context Directory Agent Configuration
  • Lab 2-2: ASA Identity-Based Firewall Configuration
  • Lab 3-1: ASA CX and PRSM Exploration
  • Lab 3-2: ASA CX Access Policy Configuration
  • Lab 3-3: ASA CX Identity Policy Configuration
  • Lab 3-4: ASA CX Decryption Policy Configuration
  • Lab 3-5: PRSM Administration
  • Lab 4-1: Cisco ASA and Cloud Web Security Integration
  • Lab 8-1: ASA Cluster Configuration