Chapter 7. Implementing Cisco IOS Firewall

THE FOLLOWING CCNA SECURITY EXAM OBJECTIVES ARE COVERED IN THIS CHAPTER:

  • Implement the Cisco IOS firewall feature set using SDM

    • Describe the operational strengths and weaknesses of the different firewall technologies

    • Explain stateful firewall operations and the function of the state table

    • Implement Zone Based Firewall using SDM

  • Mitigate threats to Cisco routers and networks using ACLs

    • Explain the functionality of standard, extended, and named IP ACLs used by routers to filter packets

    • Configure and verify IP ACLs to mitigate given threats (filter IP traffic destined for Telnet, SNMP, and DDoS attacks) in a network using CLI

    • Configure IP ACLs to prevent IP address spoofing using CLI

    • Discuss the caveats to be considered ...

Get CCNA® Security Study Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial