Securing Networks with ASA Advanced (SNAA) 1.0
Overview/Description
This course focuses on the new features and syntax of Cisco
Security Appliance Software v8.0. This course teaches the knowledge
and skills needed to configure, maintain, and operate Cisco ASA
5500 Series Adaptive Security Appliances at an advanced level. This
course further updates Securing Networks with PIX and ASA (SNPA)
v5.0 and includes extensive VPN features of the ASA which replaces
Cisco Secure Virtual Private Networks (CSVPN).
Target Audience
This is an ideal course for CCNA students looking for the CCSP
certification or employees, customers and channel partners and
resellers who want to extend their knowledge of network security.
It is an excellent choice for the CCSP elective since it is a
logical extension of the required SNAF.
Prerequisites
This class assumes familiarity with Ethernet switching, TCP/IP
addressing and basic networking configuration of the Cisco IOS
software. Ideally, students possess CCNA certification and have
already passed the SNAF certification exam.
Certification
CCSP
ASA Specialist
Exams
642-515 SNAA
Included Labs
- Configuring Advanced NAT
- Configuring Site-to-Site VPNs with Pre-shared Keys
- Configuring the Corporate ASA as a Cisco Easy VPN Server
- Configuring the Cisco ASA Clientless SSL VPN
- Configuring SSL VPNs with Cisco AnyConnect Client
Outline
Module 1
- Applying NAT 0 and Policy NAT
- Advanced Protocol Handling
- Applying the Cisco Modular Policy Framework
- Handling Advanced Protocols
Module 2
- Additional Advanced Protocol Inspection
- Switching with VLANs
- Static and Dynamic Routing
- Understanding IPsec and Digital Certificates
- Digital Certificates and Public-Key Cryptography
Module 3
- Security Appliance Certificate Enrollment Support
- Implementing Site-to-Site VPNs with Digital Certificates
- Configuring the Cisco VPN Client
- Implementing Remote Access VPNs with Digital Certificates
Module 4
- Configuring Advanced Remote-Access Features and Policy
- Configuring Cisco ASA 5505 as a Cisco Easy VPN Hardware
Client
- Cisco Easy VPN
- Configuring QoS for IPsec VPNs
- Deploying SSL VPN Technology
- Cisco Secure Desktop
- Configuring Clientless SSL VPNs
Module 5
- Configuring Additional SSL VPN Features
- Troubleshooting Clientless and Port-Forwarding SSL VPNs
- Configuring Full Network Access SSL VPN
- Cisco AnyConnect SSL VPN Client Configuration
- Using Cisco Secure Desktop
Module 6
- Securing the Desktop with Cisco Secure Desktop and DAP
- Examining the Cisco SSMs
- Configure a Cisco IPS Security Policy
Objectives
- Understanding Advanced NAT Implementation
- Performing Advanced Protocol Handling
- Implementing Advanced MPF
- Designing and Configuring Switching and Routing
- Implementing IPSec, Digital Certificates, and Public-Key
Cryptography
- Configuring Cisco Secure Desktop and Clientless SSL VPNs
- Examining the Cisco SSMs
- Configuring a Cisco IPS Security Policy