Cisco ASA - all-in-one firewall, IPS, Anti-X, and VPN adaptive security appliance : identify, mitigate, and respond to network attacks, second edition / Jazib Frahim, Omar Santos ; technical reviewers, Randy Ivener, Jay Johnston.

Format:

Book

Author/Creator:

Frahim, Jazib.

Santos, Omar., Author.

Contributor:

Ivener, Randy., Reviewer.

Johnston, Jay., Reviewer.

Books24x7, Inc.

Series:

Cisco Press networking technology series Cisco ASA

Language:

English

Subjects (All):

Computer networks--Security measures.

Computer networks.

Firewalls (Computer security).

Physical Description:

1 online resource (xxv, 1119 p.) : ill.

Edition:

2nd ed.

Place of Publication:

Indianapolis, Ind. : Cisco Press, c2010 (Norwood, Mass. : Books24x7.com [generator])

Language Note:

English

System Details:

text file

Summary:

For organizations of all sizes, the Cisco ASA product family offers powerful new tools for maximizing network security. Cisco ASA: All-in-One Firewall, IPS, Anti-X and VPN Adaptive Security Appliance , Second Edition, is Cisco's authoritative practitioner's guide to planning, deploying, managing, and troubleshooting security with Cisco ASA. Written by two leading Cisco security experts, this book presents each Cisco ASA solution in depth, offering comprehensive sample configurations, proven troubleshooting methodologies, and debugging examples. Readers will learn about the Cisco ASA Firewall solution and capabilities; secure configuration and troubleshooting of site-to-site and remote access VPNs; Intrusion Prevention System features built into Cisco ASA's Advanced Inspection and Prevention Security Services Module (AIP-SSM); and Anti-X features in the ASA Content Security and Control Security Services Module (CSC-SSM). This new edition has been updated with detailed information on the latest ASA models and features. Everything network professionals need to know to identify, mitigate, and respond to network attacks with Cisco ASA Includes detailed configuration examples, with screenshots and command line references Covers the ASA 8.2 release Presents complete troubleshooting methodologies and architectural references

Contents:

Cover

Contents

Introduction

Part I: Product Overview

Chapter 1 Introduction to Security Technologies

Firewalls

Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS)

Virtual Private Networks

Summary

Chapter 2 Cisco ASA Product and Solution Overview

Cisco ASA 5505 Model

Cisco ASA 5510 Model

Cisco ASA 5520 Model

Cisco ASA 5540 Model

Cisco ASA 5550 Model

Cisco ASA 5580-20 and 5580-40 Models

Cisco ASA AIP-SSM Module

Cisco ASA Gigabit Ethernet Modules

Cisco ASA CSC-SSM Module

Chapter 3 Initial Setup and System Maintenance

Accessing the Cisco ASA Appliances

Managing Licenses

Initial Setup

Device Setup

IP Version 6

Setting Up the System Clock

Configuration Management

Remote System Management

System Maintenance

System Monitoring

Device Monitoring and Troubleshooting

Part II: Firewall Technology

Chapter 4 Controlling Network Access

Packet Filtering

Configuring Traffic Filtering

Advanced ACL Features

Content and URL Filtering

Deployment Scenarios for Traffic Filtering

Monitoring Network Access Control

Understanding Address Translation

DNS Doctoring

Monitoring Address Translations

Chapter 5 IP Routing

Configuring Static Routes

RIP

OSPF

EIGRP

IP Multicast

Chapter 6 Authentication, Authorization, and Accounting (AAA)

AAA Protocols and Services Supported by Cisco ASA

Defining an Authentication Server

Configuring Authentication of Administrative Sessions

Authenticating Firewall Sessions (Cut-Through Proxy Feature)

Configuring Authorization

Configuring Accounting

Chapter 7 Application Inspection

Enabling Application Inspection

Selective Inspection

Computer Telephony Interface Quick Buffer Encoding Inspection.

Distributed Computing Environment Remote Procedure Calls (DCERPC)

Domain Name System

Extended Simple Mail Transfer Protocol

File Transfer Protocol

General Packet Radio Service Tunneling Protocol

H.323

Unified Communications Advanced Support

HTTP

ICMP

ILS

Instant Messenger (IM)

IPSec Pass-Through

MGCP

NetBIOS

PPTP

Sun RPC

RSH

RTSP

SIP

Skinny (SCCP)

SNMP

SQL*Net

TFTP

WAAS

XDMCP

Chapter 8 Virtualization

Architectural Overview

Configuration of Security Contexts

Deployment Scenarios

Monitoring and Troubleshooting the Security Contexts

Chapter 9 Transparent Firewalls

Restrictions Within Transparent Firewalls

Configuration of Transparent Firewalls

Monitoring and Troubleshooting the Transparent Firewalls

Chapter 10 Failover and Redundancy

Failover Configuration

Monitoring and Troubleshooting Failovers

Chapter 11 Quality of Service

QoS Types

QoS Architecture

Configuring Quality of Service

QoS Deployment Scenarios

Monitoring QoS

Part III: Intrusion Prevention System (IPS) Solutions

Chapter 12 Configuring and Troubleshooting Intrusion Prevention System (IPS)

Overview of the Adaptive Inspection Prevention Security Services Module (AIP-SSM) and Adaptive Inspection Prevention Security Services Card (AIP-SSC)

AIP-SSM and AIP-SSC Management

Cisco IPS Software Architecture

Configuring the AIP-SSM

AIP-SSM Maintenance

Advanced Features and Configuration

Cisco ASA Botnet Detection

Chapter 13 Tuning and Monitoring IPS

IPS Tuning

Monitoring and Tuning the AIP-SSM Using CS-MARS

Displaying and Clearing Statistics

Part IV: Content Security.

Chapter 14 Configuring Cisco Content Security and Control Security Services Module

Initial CSC SSM Setup

Configuring CSC SSM Web-Based Features

Configuring CSC SSM Mail-Based Features

Configuring CSC SSM File Transfer Protocol (FTP)

Chapter 15 Monitoring and Troubleshooting the Cisco Content Security and Control Security Services Module

Monitoring the CSC SSM

Troubleshooting the CSC SSM

Part V: Virtual Private Network (VPN) Solutions

Chapter 16 Site-to-Site IPSec VPNs

Preconfiguration Checklist

Configuration Steps

Advanced Features

Modifying Default Parameters

Monitoring and Troubleshooting Site-to-Site IPSec VPNs

Chapter 17 IPSec Remote-Access VPNs

Cisco IPSec Remote Access VPN Solution

Advanced Cisco IPSec VPN Features

L2TP Over IPSec Remote Access VPN Solution

Monitoring and Troubleshooting Cisco Remote-Access VPN

Chapter 18 Public Key Infrastructure (PKI)

Introduction to PKI

Installing Certificates

The Local Certificate Authority

Configuring IPSec Site-to-Site Tunnels Using Certificates

Configuring the Cisco ASA to Accept Remote-Access IPSec VPN Clients Using Certificates

Troubleshooting PKI

Chapter 19 Clientless Remote-Access SSL VPNs

SSL VPN Design Considerations

SSL VPN Prerequisites

Pre-SSL VPN Configuration Guide

Clientless SSL VPN Configuration Guide

Cisco Secure Desktop

Host Scan

Dynamic Access Policies

Monitoring and Troubleshooting SSL VPN

Chapter 20 Client-Based Remote-Access SSL VPNs

SSL VPN Deployment Considerations

AnyConnect VPN Client Configuration Guide

Deployment Scenario of AnyConnect Client.

Monitoring and Troubleshooting AnyConnect SSL VPNs

Index.

Notes:

Title from title screen.

Includes index.

Digitized and made available by: Books24x7.com.

Description based on publisher supplied metadata and other sources.

ISBN:

9786612453373

9781282453371

1282453378

9781587140976

1587140977

OCLC:

1024248180