O'Reilly logo

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Understanding the Cisco ASA Firewall

Video Description

This is a best practices course on how to set-up, manage, and troubleshoot firewalls and VPNs using the Cisco ASA (Adaptive Security Appliance). Drawing on his 15 years of experience implementing Cisco firewalls, instructor Jimmy Larsson shows you the actual hands-on commands and configurations he uses in real life situations.

The course is targeted at first time Cisco ASA users and those with some ASA experience looking to fill the gaps in their knowledge. Larsson recommends that learners have access to a Cisco firewall in order to practice the methods covered in the course.

  • Gain the practical knowledge required to set-up and manage Cisco firewalls and VPNs
  • Explore ASA hardware models, CLI basics, and core firewall configuration practices
  • Acquire a thorough understanding of how network address translation works
  • Learn basic and advanced methods for configuring the AnyConnect client VPN solution
  • Discover how to configure, manage, and troubleshoot site-to-site VPN tunnels
  • Understand packet capture and how to use troubleshooting tools like Packet Tracer
  • Get exposed to advanced methods for enhancing firewall functionality
Jimmy Larsson runs Secyourity AB, a network security company focused on Cisco-based security products and solutions. He's been in IT since 1990 working for companies such as ATEA and LAN Assistans. He's certified in Cisco CCNA Routing & Switching, CCNA Security, CCNP Routing & Switching, CCNP Security, Check Point CCSE, and ISC2 CISSP in Information Security.

Table of Contents

  1. Introduction
    1. Welcome To The Course 00:01:07
    2. About The Author 00:00:52
  2. Introduction To The Firewall
    1. ASA Hardware Models 00:04:07
    2. CLI Basics Part - 1 00:06:20
    3. CLI Basics Part - 2 00:05:41
  3. Basic Configuration
    1. Interface Configuration 00:05:37
    2. 5505 Switchports 00:03:06
    3. Security Levels 00:02:49
    4. Same Security Level 00:04:16
    5. The Course Lab Environment 00:04:37
    6. Implementing Access Lists Part - 1 00:04:24
    7. Implementing Access Lists Part - 2 00:05:27
    8. Introduction To NAT 00:07:48
    9. Fixup Protocol ICMP 00:03:53
    10. Management Access Part - 1 00:06:41
    11. Management Access Part - 2 00:06:11
    12. Firewall Local DHCP Server 00:03:23
    13. A Basic Firewall Configuration Part - 1 00:06:49
    14. A Basic Firewall Configuration Part - 2 00:05:37
    15. An Introduction To ASDM Part - 1 00:03:47
    16. An Introduction To ASDM Part - 2 00:06:43
  4. Network Address Translation In Depth
    1. Network Address Translation Part - 1 00:05:57
    2. Network Address Translation Part - 2 00:04:27
    3. Network Address Translation Part - 3 00:06:40
    4. Network Address Translation Part - 4 00:08:08
    5. NAT And Access Lists 00:02:57
  5. Anyconnect Client VPN Setup
    1. Two Types Of VPN Connections 00:01:31
    2. Two Types Of VPN Clients 00:02:32
    3. SSL Certificates Part - 1 00:10:00
    4. SSL Certificates Part - 2 00:06:30
    5. Download Anyconnect Files From Cisco 00:04:08
    6. Upload .Pkg Files To ASA 00:04:46
    7. Default Licenses In ASA 00:06:39
    8. Configuring The .Pkg-Files To Use 00:03:33
    9. Activating Anyconnect (Enabling) 00:07:34
    10. Logging And Debugging Anyconnect 00:05:50
    11. Connecting But No Traffic Flow 00:03:55
    12. Fix NAT To Make It Work 00:03:27
    13. Internet Access Via The Tunnel 00:03:51
    14. Split Tunneling 00:04:59
    15. Making The User Select Connection Profile 00:05:49
    16. VPN Filter 00:05:25
    17. Client Profile Editor 00:06:12
    18. LDAP Authentication Of Users 00:08:04
    19. Dynamic Access Policies Part - 1 00:06:23
    20. Dynamic Access Policies Part - 2 00:07:58
  6. IPSEC VPN
    1. The Life Of An IPSEC-Tunnel 00:09:36
    2. Information Needed 00:05:07
    3. Configuring Phase 1 Parameters 00:10:07
    4. Configuring Phase 2 Parameters 00:05:00
    5. Proxy ACL And Crypto Map Configuration 00:04:52
    6. Finalising The VPN Configuration 00:03:55
    7. Testing The Tunnel 00:08:22
    8. Modifying NAT To Make The Tunnel Work 00:11:42
  7. Troubleshooting Tools
    1. Logging And Debugging 00:13:12
    2. Packet Tracer 00:04:35
    3. Packet Capture 00:08:27
  8. Advanced Topics
    1. Transparent Mode 00:06:16
    2. Multi Context 00:03:45
    3. Failover 00:05:23
    4. Trunks And Etherchannels 00:05:23
  9. Conclusion
    1. Wrap Up And Thank You 00:01:19