Description

Firewall systems are the mainstream threat defense method based on network zoning and zone interface points filtering. Firewall systems can provide a set of effective methods to reduce risk to exposed services and business processes by using different traffic filtering approaches and technologies. This course describes firewall systems, and common filtering approaches and technologies that are found inside a firewall system.
The Cisco Adaptive Security Appliance5500-X Series Next-Generation Firewalls provides the administrator with a set of access control methods that can tightly control access between security zones in networks. The Cisco ASA is an application-aware, stateful packet filtering firewall, which tracks connections in a connection table. To control which session can enter the connection table, administrators use the most fundamental of Cisco ASA access controls; interface and global access control lists. This course describes the Cisco ASA connection table, and describes how to configure and verify interface and global ACLs. The course also describes how to configure object groups, which can significantly reduce ACL complexity. The course concludes with instructions on troubleshooting ACLs on the Cisco ASA.