CCNP Security FIREWALL 642 618 Official Cert Guide

Ccnp Security Firewall 642 618 Official Cert Guide-Free PDF

  • Date:26 Sep 2020
  • Views:8
  • Downloads:0
  • Pages:95
  • Size:1.82 MB

Share Pdf : Ccnp Security Firewall 642 618 Official Cert Guide

Download and Preview : Ccnp Security Firewall 642 618 Official Cert Guide


Report CopyRight/DMCA Form For : Ccnp Security Firewall 642 618 Official Cert Guide


Transcription:

CCNP Security,FIREWALL 642 618,Official Cert Guide. David Hucaby,Dave Garneau,Anthony Sequeira,Cisco Press. 800 East 96th Street,Indianapolis IN 46240, ii CCNP Security FIREWALL 642 618 Official Cert Guide. CCNP Security FIREWALL 642 618 Official Cert Guide. David Hucaby,Dave Garneau,Anthony Sequeira,Copyright 2012 Pearson Education Inc. Published by,Cisco Press,800 East 96th Street,Indianapolis IN 46240 USA.
All rights reserved No part of this book may be reproduced or transmitted in any form or by any means. electronic or mechanical including photocopying recording or by any information storage and retrieval. system without written permission from the publisher except for the inclusion of brief quotations in a. Printed in the United States of America, First Printing May 2012 with corrections December 2012. The Library of Congress Cataloging in Publication Data is on file. ISBN 13 978 1 58714 271 0,ISBN 10 1 58714 271 6,Warning and Disclaimer. This book is designed to provide information for the Cisco CCNP Security 642 618 FIREWALL exam. Every effort has been made to make this book as complete and as accurate as possible but no warranty or. fitness is implied, The information is provided on an as is basis The authors Cisco Press and Cisco Systems Inc shall have. neither liability nor responsibility to any person or entity with respect to any loss or damages arising from. the information contained in this book or from the use of the discs or programs that may accompany it. The opinions expressed in this book belong to the authors and are not necessarily those of Cisco Systems Inc. Trademark Acknowledgments, All terms mentioned in this book that are known to be trademarks or service marks have been appropriate. ly capitalized Cisco Press or Cisco Systems Inc cannot attest to the accuracy of this information Use of. a term in this book should not be regarded as affecting the validity of any trademark or service mark. Corporate and Government Sales, The publisher offers excellent discounts on this book when ordered in quantity for bulk purchases or spe.
cial sales which may include electronic versions and or custom covers and content particular to your busi. ness training goals marketing focus and branding interests For more information please contact U S. Corporate and Government Sales 1 800 382 3419 corpsales pearsontechgroup com. For sales outside the United States please contact International Sales international pearsoned com. Feedback Information, At Cisco Press our goal is to create in depth technical books of the highest quality and value Each book. is crafted with care and precision undergoing rigorous development that involves the unique expertise of. members from the professional technical community, Readers feedback is a natural continuation of this process If you have any comments regarding how we. could improve the quality of this book or otherwise alter it to better suit your needs you can contact us. through e mail at feedback ciscopress com Please make sure to include the book title and ISBN in your. We greatly appreciate your assistance, Publisher Paul Boger Cisco Press Program Manager Anand Sundaram. Associate Publisher Dave Dusthimer Cisco Representative Erik Ullanderson. Executive Editor Brett Bartow Senior Development Editor Christopher Cleveland. Managing Editor Sandra Schroeder Project Editor Mandie Frank. Copy Editor Sheri Cain Technical Editors Kenny Hackworth Doug McKillip. Editorial Assistant Vanessa Evans Designer Gary Adair. Composition Mark Shirar Indexer Brad Herriman,Proofreader Apostrophe Editing Services. iv CCNP Security FIREWALL 642 618 Official Cert Guide. About the Authors, David Hucaby CCIE No 4594 is a network architect for the University of Kentucky.
where he works with healthcare networks based on the Cisco Catalyst ASA FWSM and. Unified Wireless product lines David has a bachelor of science degree and master of sci. ence degree in electrical engineering from the University of Kentucky He is the author of. several Cisco Press titles including Cisco ASA PIX and FWSM Firewall. Handbook Second Edition Cisco Firewall Video Mentor Cisco LAN. Switching Video Mentor and CCNP SWITCH Exam Certification Guide. David lives in Kentucky with his wife Marci and two daughters. Dave Garneau is a senior member of the Network Security team at Rackspace Hosting. Inc Before that he was the principal consultant and senior technical instructor at The. Radix Group Ltd In that role Dave trained more than 3 000 students in nine countries. on Cisco technologies mostly focusing on the Cisco security products line and worked. closely with Cisco in establishing the new Cisco Certified Network Professional Security. CCNP Security curriculum Dave has a bachelor of science degree in mathematics from. Metropolitan State College of Denver Dave lives in San Antonio Texas with his wife. Vicki and their two brand new baby girls Elise and Lauren. Anthony Sequeira CCIE No 15626 is a Cisco Certified Systems Instructor CCSI and. author regarding all levels and tracks of Cisco Certification Anthony formally began his. career in the information technology industry in 1994 with IBM in Tampa Florida He. quickly formed his own computer consultancy Computer Solutions and then discovered. his true passion teaching and writing about Microsoft and Cisco technologies Anthony. joined Mastering Computers in 1996 and lectured to massive audiences around the world. about the latest in computer technologies Mastering Computers became the revolution. ary online training company KnowledgeNet and Anthony trained there for many years. Anthony is currently pursuing his second CCIE in the area of Security and is a full time. instructor for the next generation of KnowledgeNet StormWind Live Anthony is also a. VMware Certified Professional,About the Technical Reviewers. Doug McKillip P E CCIE No 1851 is an independent consultant specializing in Cisco. Certified Training in association with Global Knowledge a training partner of Cisco He. has more than 20 years of experience in computer networking and security McKillip. provided both instructional and technical assistance during the initial deployment of. MCNS Version 1 0 the first Cisco Security training class which debuted in early 1998. and has been a lead instructor for the security curriculum ever since Doug has supple. mented his instruction by authoring numerous security troubleshooting white papers and. security blogs for Global Knowledge He holds bachelors and master s degrees in chemi. cal engineering from MIT and a master s degree in computer and information sciences. from the University of Delaware He resides in Wilmington Delaware. Kenny Hackworth is a senior network automation engineer at Rackspace Hosting the. service leader in cloud computing His current expertise includes supporting content. switching Cisco CSS and F5 LTMs and security appliances Cisco and Juniper firewalls. His primary focus is currently on automation particularly configuration changes as well. as equipment deployments Prior to Rackspace Kenny supported the NSA while working. for the Air Intelligence Agency performing Digital Network Exploitation analysis and. Cryptanalysis, vi CCNP Security FIREWALL 642 618 Official Cert Guide. Dedications,From David Hucaby, As always this book is dedicated to the most important people in my life my wife. Marci and my two daughters Lauren and Kara Their love encouragement and support. carry me along I m so grateful to God who gives endurance and encouragement. Romans 15 5 and who has allowed me to work on projects like this. From Dave Garneau, I am also dedicating this book to the most important people in my life my wife Vicki. our daughters Elise and Lauren and my stepson Ben Without their love and support I. doubt I would succeed in any major endeavor much less one of this magnitude. Additionally I want to dedicate this book to my mother Marian who almost 40 years. ago believed a very young version of myself when he declared he would one day grow. up and write a book I am glad I was finally able to live up to that promise. From Anthony Sequeira, This book is dedicated to the many many students I have had the privilege of teaching.
over the past several decades I hope that my passion for technology and learning has. conveyed itself and helped motivate and perhaps even inspire. Acknowledgments, It has been my great pleasure to work on another Cisco Press project I enjoy the net. working field very much and technical writing even more And more than that I m. thankful for the joy and inner peace that Jesus Christ gives making everything more. abundant and worthwhile, I ve now been writing Cisco Press titles continuously for more than 10 years I always. find it to be quite fun but other demands seem to be making writing more difficult and. time consuming That s why I am so grateful that Dave Garneau and Anthony Sequeira. came along to help tote the load It s also been a great pleasure to work with Brett Bartow. and Chris Cleveland I m glad they put up with me yet again especially considering how. much I let the schedule slip, I am grateful for the insight suggestions and helpful comments that the technical editors. contributed Each one offered a different perspective which helped make this a more. well rounded book and me a more educated author,David Hucaby. The creation of this book has certainly been a maelstrom of activity I was originally slated. to be one of the technical reviewers but became a coauthor at David Hucaby s request. Right after accepting that challenge I started a new job moved to a new city and built a. new house Throughout all the resulting chaos Brett Bartow and Christopher Cleveland. demonstrated the patience of Job while somehow keeping this project on track. Hopefully their patience was not exhausted and I look forward to working with them. again on future projects, I am also thankful to our technical reviewers for their meticulous attention to detail The.
input of Doug McKillip and Kenny Hackworth both of whom I count as a close friends. was invaluable The extremely thorough reviews provided by Doug and Kenny definitely. improved the quality of the material for the end readers. Dave Garneau, Brett Bartow is a great friend and I am so incredibly thankful to him for the awesome. opportunities he has helped me to achieve with the most respected line of IT texts in the. world Cisco Press I am also really thankful that he continues to permit me to participate. in his fantasy baseball league, It was such an honor to help on this text with the incredible David Hucaby and Dave. Garneau While they sought out a third author named David it was so kind of them to. make a concession for an Anthony, I cannot thank David Hucaby enough for the assistance he provided me in accessing the. latest and greatest Cisco ASAs for the lab work and experimentation that was required. for my chapters of this text, Finally thanks to my family Joette and Annabella and the dog Sweetie for understanding. all the hours I spent hunched over a keyboard That reminds me thanks also to my chiro. practor Dr Paton,Anthony Sequeira, viii CCNP Security FIREWALL 642 618 Official Cert Guide.
Contents at a Glance,Introduction xxv, Chapter 1 Cisco ASA Adaptive Security Appliance Overview 3. Chapter 2 Working with a Cisco ASA 35,Chapter 3 Configuring ASA Interfaces 75. Chapter 4 Configuring IP Connectivity 113,Chapter 5 Managing a Cisco ASA 161. Chapter 6 Recording ASA Activity 243,Chapter 7 Using Address Translation 279. Chapter 8 Controlling Access Through the ASA 391,Chapter 9 Inspecting Traffic 473.
Chapter 10 Using Proxy Services to Control Access 583. Chapter 11 Handling Traffic 607,Chapter 12 Using Transparent Firewall Mode 629. Chapter 13 Creating Virtual Firewalls on the ASA 651. Chapter 14 Deploying High Availability Features 671. Chapter 15 Integrating ASA Service Modules 715,Chapter 16 Traffic Analysis Tools 729. Chapter 17 Final Preparation 765, Appendix A Answers to the Do I Know This Already Quizzes 771. Appendix B CCNP Security 642 618 FIREWALL Exam Updates Version 1 0 777. Glossary of Key Terms 779,Introduction xxv, Chapter 1 Cisco ASA Adaptive Security Appliance Overview 3. Do I Know This Already Quiz 3,Foundation Topics 7,Firewall Overview 7.
Firewall Techniques 11,Stateless Packet Filtering 11. Stateful Packet Filtering 12, Stateful Packet Filtering with Application Inspection and Control 12. Network Intrusion Prevention System 13,Network Behavior Analysis 14. Application Layer Gateway Proxy 14,Cisco ASA Features 15. Selecting a Cisco ASA Model 18,ASA 5505 18,ASA 5510 5520 and 5540 19.
ASA 5550 20,ASA 5580 21,Security Services Modules 22. Advanced Inspection and Prevention AIP SSM 22,Content Security and Control CSC SSM 23. 4 port Gigabit Ethernet 4GE SSM 24,ASA 5585 X 24,ASA Performance Breakdown 25. Selecting ASA Licenses 29,ASA Memory Requirements 31. Exam Preparation Tasks 33,Review All Key Topics 33.
Define Key Terms 33,Chapter 2 Working with a Cisco ASA 35. Do I Know This Already Quiz 35,Foundation Topics 40. Using the CLI 40,Entering Commands 41,Command Help 43. Searching and Filtering Command Output 45, x CCNP Security FIREWALL 642 618 Official Cert Guide. I hope that my passion for technology and learning has conveyed itself and helped motivate and perhaps even inspire vi CCNP Security FIREWALL 642 618 Official Cert Guide Acknowledgments It has been my great pleasure to work on another Cisco Press project I enjoy the net working field very much and technical writing even more And more than that I m thankful for the joy and inner

Related Books