---

Based on our enhanced FIREWALL v2 and VPN v2 courses, this exclusive, lab-based course is designed to provide you with the most Adaptive Security Appliance (ASA) 8.4-based lab experience possible in just five days.

A typical day will begin with an informal white board lecture by the instructor, covering topics associated with the day's labs. Afterwards, you will be free to work on the labs at your own pace and to experiment in the lab environment. Of course, the instructor will remain available to assist as needed.

Labs can be run in any order, any number of times. With the exception of three labs that require two pods to work together, no coordination with other students is necessary. You can experiment with your own scenarios or try our cutting-edge labs including tasks such as:

• Fundamental ASA Configuration from the CLI and ASDM
• Controlling Administrative Access using AAA and TACACS+
• Configuring Object (Auto) NAT and Manual (Twice) NAT
• Access Control and Troubleshooting Tools
• Implementing Transparent Firewall and Bridge Groups
• Application Inspection and Control (Deep Packet Inspection)
• Threat Detection
• Routing Protocols
• Bootstrapping and configuring IPS using the AIP-SSM
• Configuring clientless and full tunnel SSL VPN
• Deploying the AnyConnect 3.0 Secure Mobility Client and IKEv2
• Using the 5505 as an easy VPN remote for the SOHO
• Site-to-site VPN using IPsec
• Setting up EtherChannel and Redundant Interfaces
• Active/Standby and Active/Active Failover
• VPN Load Balancing
• Upgrading from 8.2 to 8.4

Your ASA Lab Camp includes:

• Round-the-clock access to a dedicated Flexible Security Architecture (FSA) pod consisting of the most up-to-date security hardware
• Enhanced lab topology unlike that of any other training provider
• FIREWALL v2 and VPN v2 Workbook and Lab Guide, including exclusive additional labs
• Limited, concise lectures summarizing key points demonstrated in labs
• Ten extra security e-Lab credits, good for 30 days, so you can practice and refine your skills, including in our exclusive ASA 8.3 labs
• World-class Certified Cisco Systems instructors

Highlights

• Bootstrap the security appliance, prepare the security appliance for configuration via the ASDM, and launch and navigate ASDM
• Perform essential security appliance configuration using ASDM and the CLI
• Configure dynamic and static address translations in the security appliance using ASDM
• Configure switching and routing on the security appliance using ASDM
• Configure access control lists, filter malicious active codes, and filter URLs to meet the requirements of the security policy using ASDM
• Troubleshooting using the packet tracer
• Configure object groups and AAA using ASDM
• Configure a modular policy using ASDM
• Configure the security appliance to support a site-to-site VPN using ASDM
• Use ASDM to configure the security appliance to provide secure connectivity using remote access VPNs
• Configure the security appliance to run in transparent firewall mode
• Enable, configure, and manage multiple contexts to meet security policy requirements
• Use advanced NAT features such as auto NAT and manual NAT
• Use advanced modular policy framework for deep packet inspection of application protocols such as HTTP and FTP
• Configure the security appliance to segment traffic with VLANs
• Configure the IPSec VPN Client using digital certificates
• Configure the advanced Easy VPN Server features of the ASA
• Determine the necessary configuration for the ASA 5505 to be a VPN hardware client
• Enable clientless SSL VPNs with the security appliance
• Enable AnyConnect SSL VPN client with the security appliance
• Enable the Cisco Secure Desktop with the security appliance to increase the security posture of SSL VPN connections
• Enable Dynamic Access Policy with the Cisco Secure Desktop
• Configure, inspect, and filter traffic with the Content Security and Control SSM
• Configure the AIP-SSM to identify and alert for common attacks

Course Outline

FIREWALL v2

1. Cisco ASA Adaptive Security Appliance Essentials

• Technologies
• Families
• Licensing Options

2. Basic Connectivity and Device Management

• Preparing the Cisco ASA Adaptive Security Appliance for Network Integration
• Managing Basic Cisco ASA Adaptive Security Appliance Network Settings
• Configuring Cisco ASA Adaptive Security Appliance Device Management Features

3. Network Integration

• Configuring Cisco ASA Adaptive Security Appliance NAT Features
• Configuring Cisco ASA Adaptive Security Appliance Basic Access Control Features
• Configuring Cisco ASA Adaptive Security Appliance Routing Features
• Configuring the Cisco ASA Adaptive Security Appliance Transparent Firewall

4. Cisco ASA Adaptive Security Appliance Policy Control

• Cisco ASA Adaptive Security Appliance MPF
• Configuring Cisco ASA Adaptive Security Appliance Connection Policy and QoS Settings
• Configuring Cisco ASA Adaptive Security Appliance Advanced Application Inspections
• Configuring Cisco ASA Adaptive Security Appliance User-Based Policies

5. Cisco ASA Adaptive Security Appliance High Availability and Virtualization

• Configuring Cisco ASA Adaptive Security Appliance Interface Redundancy Features
• Configuring Cisco ASA Adaptive Security Appliance Active/Standby High Availability
• Configuring Cisco ASA Adaptive Security Appliance Security
• Configuring Cisco ASA Adaptive Security Appliance Active/Active High Availability

VPN v2

1. Cisco ASA Adaptive Security Appliance VPN Architecture and Common Components

• Evaluating the Subsystem Architecture
• Evaluating the Software Architecture
• Implementing Profiles, Group Policies, and User Policies
• Implementing PKI Services

2. Cisco ASA Adaptive Security Appliance Clientless Remote Access SSL VPN Solutions

• Deploying Basic Clientless VPN Solutions
• Deploying Advanced Application Access for Clientless SSL VPNs
• Deploying Advanced Authentication and SSO for Clientless SSL VPNs
• Customizing the Clientless S SL VPN User Interface and Portal

3. Cisco AnyConnect Remote Access SSL Solutions

• Deploying a Basic Cisco AnyConnect Full-Tunnel SSL VPN Solution
• Deploying an Advanced Cisco AnyConnect Full-Tunnel SSL VPN Solution
• Deploying Advanced AAA in Cisco Full-Tunnel VPNs

4. Cisco ASA Adaptive Security Appliance Remote Access IPsec VPNs

• Deploying Cisco Remote Access VPN Clients
• Deploying Basic Cisco Remote Access IPsec VPN Solutions

5. Cisco ASA Adaptive Security Appliance Site-to-Site IPsec VPN Solutions

• Deploying Basic Site-to-Site IPsec VPNs
• Deploying Advanced Site-to-Site IPsec VPNs

6. Endpoint Security and High Availability for Cisco ASA VPNs

• Implementing Cisco Secure Desktop and DAP for SSL VPNs
• Deploying High-Availability Features in Cisco ASA Adaptive Security Appliance VPNs

Space is limited. Register today to save your space!