• Home
• Course Catalogue
• Certifications
• Onsite Training
• Scheduled Training
• E-Learning
• Managed Services
• Consulting
• Company
• Special Offers
• News
• Links
• Enquiry And Feedback Form

Training Course Outline

IT Vendor Courses   Cisco Security CCSP Training Courses

SNPA: Securing Networks with PIX and ASA

View course dates

Course Duration: 5 days

Course Code: SNPA

Course Description:

SNPA is a five day lab intensive instructor led course. This task-orientated course teaches the knowledge and skill needed to describe, configure, verify and manage the PIX and ASA security Appliances.

 

Objectives:

- Describe security appliance features, models, components and benefits
- Discuss Adaptive Securty
- Configure the PIX Firewall to statically and dynamically translate IP addresses
- Configure the PIX Firewall to control inbound and outbound traffic
- Configure object groups to simplify ACL configuration
- Configure the PIX Firewall to send messages to a Syslog sever
- Explain the routing functionality of the PIX Firewall
- Configure content filtering on the PIX Firewall
- Configure the PIX Firewall as a DHCP client
- Configure special protocol handling on the PIX Firewall
- Configure AAA on the PIX Firewall
- Configure failover on the PIX Firewall
- Configure the PIX Firewall's IDS feature set
- Configure a site-to-site VPN using the PIX Firewall
- Configure a VPN Client-to-PIX Firewall VPN
- Perform password recovery on the PIX Firewall
- Upgrade PIX Firewall software images
- Perform a PIX Firewall activation key upgrade
- Configure command authorisation
- Configure the PIX Firewall to send traps to a SNMP Network Management Station
- Configure the PIX Firewall to permit SNMP traffic
- Configure a secure connection to the PIX Firewall using SSH
- Install the PIX Device Manager and use it to configure the PIX Firewall
- Use the PIX Device Manager to monitor the PIX Firewall
- Install the PIX Management Centre and use it to configure the PIX Firewall
- Install the Auto Update Server and use it to update the PIX Firewall and configuration
- Explain the similarities and differences between the PIX Firewall and the Catalyst 6500 Firewall Services Module
- Perform basic Firewall Services Module configuration

 

This course is part of the Cisco Certified Security Professional Certification and the Cisco Firewall Specialisation.

Prerequisites:

Delegates are required to meet the following prerequisites:

- CCNA certification or the equivalent knowledge
- Basic knowledge of the Windows operating system
- Familiarity with networking and security terms and concepts

Target Audience:

Cisco Customers, Channel Partners and System Engineers who sell, implement and maintain Cisco PIX and ASA security appliances.

Prerequisite courses:

ICND1: Interconnecting Cisco Network Devices Part 1

ICND2: Interconnecting Cisco Network Devices Part 2

Follow on courses:

SND: Securing Cisco Network Devices

SNRS: Securing Networks with Cisco Routers and Switches

IPS: Implementing Cisco Intrusion Protection Systems

CSVPN: Cisco Secure Virtual Private Networks

Relevant Certifications:

CCSP Cisco Certified Security Professional

Cisco Firewall Specialist

This course includes the following modules:

Reviewing Cisco Firewall Technology Features

• Firewalls
• Security Appliance Overview

Cisco PIX and ASA Security Appliance Families

• Cisco Pix Security Appliance Family
• PIX Security Appliance Licensing
• ASA 5500 Adaptive Security Appliance Licensing
• Cisco Catalyst 6500/7600 Firewall Services Module

Getting Started with Cisco Security Appliance

• User Interface
• File Management
• Adaptive Security Algorithm Security Levels
• Basic Firewall Appliance Configuration
• Examining the Firewall Appliance Status
• Time Setting and NTP Support
• Syslog Configuration

Translations and Connections

• Transport Protocols
• Network Address Translation
• Port Address Translation
• Static Command
• TCP Intercept and Connection Limits
• Connections and Translations
• Configuring Multiple Interfaces

Access Control Lists and Content Filtering

• ACLs
• Malicious Active Code Filtering
• URL Filtering

Object Grouping

• Overview of Object Grouping
• Getting Started with Object Groups
• Configure Object Groups
• Configure Nested Object Groups

Authentication, Authorization, and Accounting

• Installation of Cisco Secure ACS for Windows 2000
• Security Appliance Access Authentication Configuration
• Cut-through Proxy Authentication Configuration
• Tunnel Access Authentication Configuration
• Authorization Configuration
• Downloadable ACLs
• Accounting Configuration

Switching and Routing

• Virtual LANS
• Static and Dynamic Routing
• OSPF
• Multicast

Modular Policy Framework

• Modular Policy Overview
• Class-Map
• Policy Map
• Service Policy

Advanced Protocol Handling

• Advanced Protocol Handling
• FTP Application Inspection
• HTTP Application Inspection
• Protocol Application Inspection
• Multimedia Support

Virtual Private Network Configuration

• Enabling a secure VPN
• How IPSec Works
• Configure VPN Connection Parameters
• IPSec Configuration Tasks
• Scale Security Appliance VPNs

Configuring Security Appliance Remote Access Using Cisco Easy VPN

• Introduction to the Cisco Easy VPN
• Overview of the Cisco VPN Client
• How the Cisco easy VPN Works
• Configuring Users and Groups
• Configuring the Easy VPN Server for Extended Authentication
• Configure Security Appliance Hub and Spoke VPNs
• Cisco VPN Client Manual Configuration tasks
• Working with the Cisco VPN Client

Configuring ASA for WebVPN

• WebVPN Feature Overview
• WebVPN End-User Interface
• Configure WebVPN General Parameters
• Configure WebVPN Servers and URLs
• Configure WebVPN Port Forwarding
• Configure WebVPN Email Proxy
• Configure WebVPN Content Filters and ACLs

Configuring Transparent Firewall

• Transparent Firewall Mode Overview
• Enabling Transparent Firewall Mode
• Monitoring and Maintaining Transparent Firewall

Configuring Security Contexts

• Security Context Overview
• Enabling Multiple Context Mode
• Configuring a Security Context
• Managing Security Contexts

Failover

• Understanding Failover
• Serial Cable-Based Failover Configuration
• Active/Standby LAN –Based Failover Configuration
• Active/Active Failover Configuration

Cisco Security Appliance Device Manager

• Describe ASDM and its Capabilities
• Explain ASDM hardware and software requirements
• Prepare the Security Appliance to use ASDM
• Navigate ASDM configuration windows.
• Navigate ASDM monitor windows
• Navigate ASDM multimode windows

AIP- Security Services Module – Getting Started

• AIP-SSM Overview
• AIP-SSM SW Loading
• Initial AIP ASDM Configuration
• Configure a Security Policy on the ASA Security Appliance

Managing Security Appliance

• Managing System Access
• Managing User Access Levels
• Managing Software, Licenses, and Configurations
• Image Upgrade and Activation Keys

 

Location	Duration	RRP	Jul	Aug	Sep	Oct	Nov	Dec
Click on course date to make a booking, check availability, or find out about available discounts.
Coventry	5 days	£1845		18 - 22			3 - 7
London (Ros)	5 days	£1795		4 - 8	1 - 5
London - Old Broad Street	5 days	£1845	28 - 1	11 - 15	22 - 26	20 - 24	24 - 28
Manchester (Stock)	5 days	£1795		11 - 15
Reading	5 days	£1795			22 - 26
Wakefield	5 days	£1845	14 - 18		29 - 3
Wokingham	5 days	£1845			1 - 5			8 - 12

<< Previous 6 Months

Next 6 Months >>

Perpetual Solutions are a global provider of onsite training solutions throughout London, UK and the rest of the world. For scheduled training our UK partner network provides an unrivalled choice of courses.

Save as PDF

Print this course