Basic PIX Firewall Configuration

Ensurepass There is basic PIX Firewall configuration on-hand from time to time. The client that does the following: 1. NAT overload from an inside network to an outside network 2. Accept incoming PPTP VPN connections from ouside clients 3. Turns on the web-based GUI on the PIX : Saved : PIX Version 6.3(4) interface ethernet0 auto interface ethernet1 100full :These two lines activate the outside (Ethernet0) and inside (Ethernet1) interfaces nameif ethernet0 outside security0 nameif ethernet1 inside Read more […] Read more »

CBT NUGGETS – CISCO CCNP SECURITY (FORMERLY KNOWN AS CCSP) FIREWALL 642-617

EnsurepassSince the firewall system is usually the first solution deployed by an organizations, anyone involved in security – from the Small-Office/Home-Office to the large enterprise – will benefit from this course in a major way. And of course, by passing the 642-617 exam, you’ll be on your way to achieving CCNP Security certification! In this course, you’ll learn all about the features of the ASA for protecting your security domains and the incredible Modular Policy Framework using Read more […] Read more »

VPN Virtual Tunnel Interfaces

Ensurepass While doing a recent deployment, I ran across this concept. It’s a slightly different way to configure VPNs on a Cisco router that (for me) is far less confusing and finicky. If you’ve ever configured VPNs using a PIX firewall or IOS router, you probably know of the pain associated with making sure your crypto map is correctly configured. There are SO MANY pieces of it, you’re almost assured that something is not going to match between one side of the connection and the Read more […] Read more »

CNP Security SECURE 642-637 Official Cert Guide

EnsurepassCCNP Security SECURE 642-637 Official Cert Guide presents you with an organized test preparation routine through the use of proven series elements and techniques. “Do I Know This Already?” quizzes open each chapter and enable you to decide how much time you need to spend on each section. Exam topic lists make referencing easy. Chapter-ending Exam Preparation Tasks help you drill on key concepts you must know thoroughly. CCNP Security SECURE 642-637 Official Cert Guide focuses specifically Read more […] Read more »

CCVP Books

Ensurepass CCVP™ (Cisco Certified Voice Professional) certification recognizes the increased importance placed on IT professionals who are responsible for integrating voice technology into underlying network architectures. Earning a CCVP certification validates a robust set of skills in implementing, operating, configuring, and troubleshooting a converged IP network. Learn more about CCVP certification from Cisco Systems®. Prerequisites CCNA Voice or CCNA (until 6/24/09) Exams Candidates can now Read more […] Read more »

Firewall Technologies

Ensurepass Firewalls are used to protect computer networks from hostile intrusions. A hardware firewall separates trusted internal networks (e.g Internal corporate LAN) from external non-trusted networks (e.g Internet or untrusted WAN). The primary objective of the firewall is to examine all inbound and outbound traffic to see if it meets specific criteria (firewall policy rules). If the traffic complies with the firewall policy it is permitted, otherwise it is dropped. Firewall operations are based Read more […] Read more »

CCNP Security VPN 642-648 Official Cert Guide, Rough Cuts, 2nd Edition

EnsurepassPublished: Feb 28, 2012  |  Copyright 2012   |  Dimensions: 7-3/8″ x 9-1/8″   |  Pages: 900   |  Edition: 2nd CCNP Security VPN 642-648 Official Cert Guide is a best of breed Cisco exam study guide that focuses specifically on the objectives for the CCNP Security VPN exam. Cisco Certified Internetwork Expert (CCIE) Howard Hooper shares preparation hints and test taking tips, helping you identify areas of weakness and improve both your conceptual knowledge and hands-on skills. Read more […] Read more »

Simple configuration of Context-Based Access Control

Ensurepass Technical characteristics: 1. Traffic filtering CBAC checks not only the information of the network layer and the transport layer but also the information of the application layer. It can also filter the http traffic and block java plug-in 2. Traffic monitoring CBAC monitors the traffic passing through the router and handles the TCP and UDP state information which can be used to generate the temporary list to release the rebound traffic and other traffic allowed. 3. Alert and audit 4. Read more […] Read more »

CCNP Security FIREWALL 642-618 Quick Reference

EnsurepassPublished: Apr 23, 2012  |  Copyright 2012  | Pages: 123  | Edition: 1st As a final exam preparation tool, the CCNP Security Firewall 642-618 Quick Referenceprovides a concise review of all objectives on the new CCNP Security Firewall exam (642-618). This eBook provides you with detailed, graphical-based information, highlighting only the key topics in cram-style format. With this document as your guide, you will review topics on firewall basics, the ASA product family, ASA configuration Read more […] Read more »

SIP Trunking With Call Manager Express

Ensurepass For many years now, telephony voice services for businesses and enterprises have been provided by using legacy PBX systems connected to the Public Switched Telephone Network (PSTN) using TDM connections (T1/E1 ISDN PRI lines or BRI or analog lines). This is shown on the figure below: Newer telephony systems adopted the IP technology on the internal LAN, but they still used TDM connectivity (ISDN PRI/BRI and analog lines) to connect to the legacy PSTN network as shown below: The newest Read more […] Read more »

Cisco ASA 5505 Firewall License Restriction for DMZ

Ensurepass The Cisco ASA 5505 is the smallest model in the newest 5500 series of Cisco firewalls. It is a great product for small businesses (5-10 employees) or even for home network use. However, if you need to create a DMZ zone (in addition to your Inside and Outside zones) in order to install a publicly accessible server (e.g WEB server, MAIL server etc), then the default basic license won’t work for you. The basic license does not allow more than 2 security zones. You will need to upgrade to Read more […] Read more »

CiscoPress – CCNP Security FIREWALL 642-617 Official Cert Guide

EnsurepassCCNP Security FIREWALL 642-617 Official Cert Guide is part of a recommended learning path from Cisco that includes simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. CCNP Security FIREWALL 642-617 Official Cert Guide is a best of breed Cisco exam study guide that focuses specifically on the objectives for the CCNP Security FIREWALL exam. Senior security consultants and instructors David Hucaby, Dave Garneau, and Anthony Read more […] Read more »

CBT Nuggets – Cisco 642-515: CCSP SNAA

Ensurepass Take your ASA skills to the next level! In this video series, Jeremy Cioara focuses on ASA”s graphic interface (called the ASDM). By the time you”ve finished watching, you”ll feel like a network star on SSLVPNs (the next-generationVPN connection for remote users), Certificate-based VPNs and application layer inspection. Plus, you”ll be fully prepared to add killer SSLVPN technology to your cooperate network, feel a lot more comfortable working with Cisco”s Read more […] Read more »

Basic IP Phone Configuration on Cisco Call Manager Express

Ensurepass Before showing you how to configure a basic IP phone on Cisco CallManager Express (CCME), you need first to understand the concepts of ephone and ephone-dn. In CCME, “ephone” (short for Ethernet Phone) refers to the physical IP phone device, and is configured with the Ethernet MAC address of the IP phone. The MAC address of the IP phone uniquely identifies the device on the network and is found on a sticker on the underside of the IP phone or from the phone’s shipping carton label. The Read more […] Read more »

Cisco ASA 5500 Dual ISP Connection

Ensurepass Starting from version 7.2(1) and upwards, the Cisco ASA 5500 series firewall supports now the Dual-ISP capability. You can connect two interfaces of the firewall to two different ISPs and use the new “SLA Monitor” feature (SLA=Service Level Monitoring) to monitor the link to the primary ISP, and if that fails, the traffic is routed to the Backup ISP. The diagram below shows how to implement the Dual-ISP feature. Assume that the Primary ISP (ISP-1) has assigned to us the public IP Read more […] Read more »

CiscoPress – Cisco Firewall Video Mentor 2009(Torrent)

Ensurepass Cisco Firewall Video Mentor is a unique video product that provides you with more than five hours of personal visual instruction from best-selling author and lead network engineer David Hucaby. In the 16 videos presented on the DVD, David walks you through common Cisco® firewall configuration and troubleshooting tasks. Designed to develop and enhance hands-on skills, each 10–30 minute video guides you through essential configuration tasks on the Cisco ASA and FWSM platforms and shows Read more […] Read more »

CBT Nuggets – Cisco 642-533: CCSP IPS Specialist

Ensurepass An Intrusion Prevention System creates virtual "trip-lines" to catch threatening traffic. Even if an intruder makes it past your firewall or other network defense systems, the IPS sensor catches them, sounds an alarm, and even blocks their movement through your network. Customizable IPS recognizes and stops most types of attacks. When your IPS identifies an attack’s signature, it alerts you that your network could be in danger. It also watches for other danger signals, Read more […] Read more »

CCVP Qos (642-642) Quick Learning

Ensurepass The following Quick Learning Modules are focused on a specific lesson or topic from the current QOS curriculum. This content is only accessible by Registered Users. If you have not yet registered, you will be prompted to register, before proceeding to access this content. Introduction to Modular QoS CLI By the end of this module you will be able to: · Define the purpose and uses of Modular QoS CLI · Describe the basic functions of class maps, policy maps and service policies · Describe Read more […] Read more »