View Larger Image	David Hucaby Cisco Press, Paperback, Bk&DVD edition, Published May 2008, 112 pages, ISBN 1587201984
	List Price: $69.99 Our Price: $43.50 You Save: $26.49 (38% Off)
	Availability: In-Stock

Write a Review and tell the world about this title!

People who purchase this book frequently purchase:

• CCNA Video Mentor: (CCNA Exam 640-802), 2nd Edition; Wendell Odom, $43.50, 38% Off!
• Network Security Technologies and Solutions; Yusuf Bhaiji, $61.95, 23% Off!
• Implementing Cisco Unified Communications Manager Part 1 (CIPT1) (Authorized Self-Study Guide); Dennis Hartmann, $50.50, 22% Off!
• CCNP Video Mentor; Kevin Wallace, $55.50, 38% Off!

• Enterprise Computing : Security
• Networking/Communications : Cisco Routers

• Cisco Press

—Mark Macumber, Systems Engineer, Cisco

Cisco Firewall Video Mentor is a unique video product that provides you with more than five hours of personal visual instruction from best-selling author and lead network engineer David Hucaby. In the 16 videos presented on the DVD, David walks you through common Cisco® firewall configuration and troubleshooting tasks. Designed to develop and enhance hands-on skills, each 10–30 minute video guides you through essential configuration tasks on the Cisco ASA and FWSM platforms and shows you how to verify that firewalls are working correctly.

Lab Layout:

Each video lab presents objectives, dynamic lab topology diagrams, command syntax overviews, and video captures of command-line input and GUI configuration. All of this is coupled with thorough audio instruction by an industry expert making learning easy and engaging.

Network Animation:

Animated network diagrams show you lab setup, device addressing, and how traffic flows through the network.

Command-Line Interface (CLI) Video:

Video screencasts of ASA and FWSM CLI and the ASDM GUI demonstrate command entry, configuration techniques, and device response.

This video product is part of the Cisco Press® Video Mentor Series. The video products in this series present expert training from industry-leading instructors and technologists. This dynamic learning environment combines animations, screencasts, and audio instruction to help users bridge the gap between conceptual knowledge and hands on application.

System Requirements:

• Microsoft Windows XP, 2000, or Vista
• Apple OS 9 or later
• Linux operating systems that have a web browser with Flash 7 or later plug-in
• Speakers or headphones
• Color display with a minimum 1024x768 resolution
• 1 GHz or faster CPU recommended
• DVD drive

Table of Contents

Lab 1 Initial Configuration 1

Scenario 1

Initial Configurations 1

Video Presentation Reference 1

Step 1: Connect to the Firewall Console 2

Step 2: Explore the CLI Modes 2

Step 3: Search the CLI Output 3

Step 4: Set the Firewall Hostname and Domain Name 4

Lab 2 Configuring Interfaces 5

Scenario 5

Initial Configurations 5

Video Presentation Reference 5

Step 1: Set the Firewall Mode 6

Step 2: Configure Interface Parameters 6

Step 3: Configure a Physical Interface 6

Step 4: Configure a Redundant Interface 7

Step 5: Configure a Logical VLAN Interface 8

Lab 3 Setting Up Routing 11

Scenario 11

Initial Configurations 11

Video Presentation Reference 12

Step 1: Configure Static Routes 12

Step 2: Configure a Default Route 12

Step 3: Configure the Standby ISP 13

Step 4: Use a Dynamic Routing Protocol 14

Lab 4 Firewall Administration over the Network 15

Scenario 15

Initial Configurations 15

Video Presentation Reference 16

Step 1: Set Up Telnet Access 16

Step 2: Set Up SSH Access 17

Step 3: Set Up ASDM Access 17

Step 4: View ASDM Session Demonstration 18

Lab 5 Using Multiple Security Contexts 19

Scenario 19

Initial Configurations 19

Video Presentation Reference 19

Step 1: Enable Multiple Context Mode 19

Step 2: Create New Security Contexts 20

Step 3: Administer Contexts Through the CLI 22

Step 4: Configure Security Contexts and Their Interfaces 22

Step 5: Learn Context Arrangement 23

Lab 6 Using Failover for High Availability 25

Scenario 25

Initial Configurations 25

Video Presentation Reference 29

Step 1: Identify the Failover Role 29

Step 2: Set Up LAN-Based Failover 29

Step 3: Set Up Stateful Failover 31

Step 4: Tune the Unit Failover Threshold 31

Step 5: Set Up the Active-Active Failover Groups 32

Step 6: Define Context Interface Addresses 32

Step 7: Assign Contexts to the Two Failover Groups 34

Step 8: Bootstrap the Secondary Firewall Unit 35

Monitoring Failover Operation 35

Lab 7 Failover in Action 37

Scenario 37

Initial Configurations 38

Video Presentation Reference 38

Scenario 1: Physical Interface Failure 38

Scenario 2: Logical Interface Failure 38

Scenario 3: Failover Unit Failure 39

Scenario 4: Hitless Code Upgrade 39

Lab 8 Setting Up Address Translation and Connection Limits 45

Scenario 45

Initial Configurations 45

Video Presentation Reference 46

Step 1: Configure Static NAT 46

Step 2: Configure Policy NAT 47

Step 3: Configure Identity NAT 48

Step 4: Configure NAT Exemption 48

Step 5: Configure Dynamic NAT and PAT 49

Step 6: Set UDP and TCP Connection Limits 50

Lab 9 Setting Up Firewall Rules 51

Scenario 51

Initial Configurations 51

Video Presentation Reference 52

Step 1: Configure an Access List for the Inside Interface 52

Step 2: Configure an Access List for the Outside Interface 52

Step 3: Configure a Network Object Group 53

Step 4: Configure an Enhanced Service Object Group 54

Step 5: Configure an Access List to Use the Object Groups 55

Lab 10 Setting Up a DMZ 57

Scenario 57

Initial Configurations 57

Video Presentation Reference 58

Step 1: Consider Connections from the Inside Toward the DMZ 59

Step 2: Consider Connections from the DMZ Toward the Outside 59

Step 3: Consider Connections from the Outside Toward the DMZ 59

Step 4: Consider Connections from the DMZ Toward the Inside 60

Step 5: Review the DMZ Access List for Conflicting Entries 60

Lab 11 Setting Up Logging 63

Scenario 63

Initial Configurations 63

Video Presentation Reference 64

Step 1: Send Logging Messages to the Internal Buffer 65

Step 2: Send Logging Messages to an ASDM Session 65

Step 3: Send Logging Messages to a Syslog Server 66

Lab 12 Using MPF to Control Layer 3/4 Connections 67

Scenario 67

Initial Configurations 67

Video Presentation Reference 68

Step 1: Classify Interesting Traffic with a Class Map 69

Step 2: Define a Policy with a Policy Map 69

Step 3: Apply the Policy 70

Step 4: Monitor the Policy 70

Lab 13 Using MPF to Perform QoS Queuing and Policing 71

Scenario 71

Initial Configurations 71

Video Presentation Reference 72

Step 1: Send Traffic to the Priority Queue 72

Step 2: Use a Policer to Limit Bandwidth 73

Lab 14 Using MPF to Tune Application Inspection Engines 75

Scenario 75

Initial Configurations 75

Video Presentation Reference 76

Step 1: Enable an Inspection Engine 76

Step 2: Change the Inspection Engine Listening Port 77

Step 3: Use an Inspection Policy Map 77

Step 4: Use an Inspection Regex Match 78

Lab 15 Testing Security Policies with Packet Tracer 79

Scenario 79

Initial Configurations 79

Video Presentation Reference 83

Step 1: Send an Outbound ICMP Packet Through a Static Address Translation 83

Step 2: Send an Outbound ICMP Packet Through a Dynamic Address Translation 83

Step 3: Send an Inbound ICMP Packet 84

Step 4: Send an Outbound TCP Packet Through an Application Inspection Engine 84

Lab 16 Capturing Traffic 85

Scenario 85

Initial Configurations 85

Video Presentation Reference 89

Step 1: Configure a Raw Data Capture Through the CLI 89

Step 2: Configure an ASP Drop Capture Through the CLI 89

Step 3: Copy the Capture Buffer to an External Host 90

Step 4: Configure a Capture Session with ASDM 90

Jun 13, 2008     John Fellenbaum
An Excellent Reference on Configuring Cisco's ASA
Cisco Firewall Video Mentor by David Hucaby published by Cisco Press (ISBN-13: 978-1-58720-198-1 / ISBN-10: 1-58720-198-4) covers various firewall configuration tasks associated with Ciscos Adaptive Security Appliance (ASA) through 16 instructional videos (also referred to as Lab 1 through Lab 16). A printed, ninety (90) page booklet accompanies the DVD. The booklet is also available in PDF format on the DVD. The booklet covers all 16 labs and is consistently formatted. The booklet format for each lab contains 4 sections. The first section describes the objectives of the lab. The second section contains the steps performed in the lab to complete the objectives. The third section contains the initial configuration prior to starting the lab. The fourth section is used as a reference to the video presentation of the lab. The author uses the Command Line Interface (CLI) to demonstrate how to configure various tasks and many times uses the Graphical User Interface (GUI) called ASDM (Adaptive Security Device Manager) to depict how one can also accomplish the same configuration task through the use of ASDM vice the CLI. The video is presented well, typically using the upper third of the layout for reference material (i.e. command formats, diagrams, etc.). The bottom two/thirds of the layout are used to show the terminal emulation session (i.e. the console session of the ASA) and the ASDM interface. The author has a pleasant voice and the running audio commentary was outstanding and synchronized perfectly with the typing associated with the CLI and ASDM interfaces. I am wondering how many takes was required to get the audio synchronized with the typing that well. It truly is impressive. The author does a tremendous job presenting the content of the video. The content is presented in a cumulative manner. All content, from rudimentary concepts, such as, exploring the CLI modes to more complex concepts, such as, Modular Policy Framework (MPF) are broken down and thoroughly explained. I found the video to be properly paced. When I did not fully grasp a concept, it was easy to back up the video and watch and listen to it again. I really enjoyed learning about Cisco's ASA via this video method. It is a nice departure from just reading pure technical documentation. The video mentor presentation is the next best thing to having your own lab equipment. Anyone interested in learning about stateful firewall concepts and configuring the Cisco ASA will benefit greatly from watching and listening to this video.

Forgot your password? FAQs Shipping Options Returns Your Orders Your Account