• Online, Self-Paced
Course Description

Based on our enhanced Cisco FIREWALL 1.0 and VPN 1.0 courses, our ASA e—Camp allows you to gain a solid foundation of practical knowledge of the Cisco ASA 5500 Series Adaptive Security Appliance (ASA) at your own pace. You will learn how to configure, maintain, and operate firewall features and VPN solutions.

Learning Objectives

Technology and features of the Cisco ASA
Cisco ASA product family
How ASAs and Cisco PIX Security Appliances protect network devices from attacks
Bootstrap the security appliance
Prepare the security appliance for configuration via the Cisco Adaptive Security Device Manager (ASDM)
Launch and navigate ASDM
Perform essential security appliance configuration using ASDM and the CLI
Configure dynamic and static address translations
Configure access policy based on Access Control Lists (ACLs)
Use object groups to simplify ACL complexity and maintenance
Use the Modular Policy Framework to provide unique policies to specific data flows
Handle advanced protocols with application inspection
Deep packet inspection of application layer traffic
Troubleshoot with Syslog, Packet Tracer, and packet capture
Configure access—control based on authenticated users
Configure threat detection to meet security policy requirements
Configure the security appliance to run in transparent firewall mode
Enable, configure, and manage multiple contexts to meet security policy requirements
Select and configure the type of failover that best suits the network topology
Monitor and manage an installed security appliance
Initialize ASA Security Service Modules including the AIP—SSM and CSC—SSM
Implement site—to—site IPsec VPN
Implement remote access IPsec and SSL VPNs
Work with both the Cisco IPsec VPN client software and the hardware client built into the ASA 5505
Deploy clientless SSL VPN access, including portal customization, smart tunnel access, and web—type ACLs
Implement single sign—on for clientless VPN access to internal resources
Deploy full tunnel SSL VPN using the Cisco AnyConnect VPN Client
Determine and enhance the security posture of remote SSL VPN systems using Cisco Secure Desktop
Use digital certificates and PKI infrastructure for peer identity management in all classes of VPN
Configure the ASA as a Certificate Authority for SSL VPN access
Configure access control policies to implement your security policy across all classes of VPN
Use Dynamic Access Policies (DAP) to adapt a remote user’s VPN policy to the user’s current situation
Implement High Availability and scalability features for Cisco ASA VPN solutions

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.