Firewall Fundamentals

Author : Wes Noonan,Ido Dubrawsky
Publisher : Pearson Education
Page : 497 pages
File Size : 50,8 Mb
Release : 2006-06-02
Category : Computers
ISBN : 9780132796699

Get Book

Firewall Fundamentals by Wes Noonan,Ido Dubrawsky Pdf

The essential guide to understanding and using firewalls to protect personal computers and your network An easy-to-read introduction to the most commonly deployed network security device Understand the threats firewalls are designed to protect against Learn basic firewall architectures, practical deployment scenarios, and common management and troubleshooting tasks Includes configuration, deployment, and management checklists Increasing reliance on the Internet in both work and home environments has radically increased the vulnerability of computing systems to attack from a wide variety of threats. Firewall technology continues to be the most prevalent form of protection against existing and new threats to computers and networks. A full understanding of what firewalls can do, how they can be deployed to maximum effect, and the differences among firewall types can make the difference between continued network integrity and complete network or computer failure. Firewall Fundamentals introduces readers to firewall concepts and explores various commercial and open source firewall implementations--including Cisco, Linksys, and Linux--allowing network administrators and small office/home office computer users to effectively choose and configure their devices. Firewall Fundamentals is written in clear and easy-to-understand language and helps novice users understand what firewalls are and how and where they are used. It introduces various types of firewalls, first conceptually and then by explaining how different firewall implementations actually work. It also provides numerous implementation examples, demonstrating the use of firewalls in both personal and business-related scenarios, and explains how a firewall should be installed and configured. Additionally, generic firewall troubleshooting methodologies and common management tasks are clearly defined and explained.

Author : Noonan
Publisher : Unknown
Page : 408 pages
File Size : 47,5 Mb
Release : 2006
Category : Electronic
ISBN : 8131737640

Get Book

Firewall Fundamentals (Cisco Press). by Noonan Pdf

Author : Gert De Laet,Gert Schauwers
Publisher : Cisco Press
Page : 481 pages
File Size : 47,7 Mb
Release : 2005
Category : Computers
ISBN : 9781587051678

Get Book

Network Security Fundamentals by Gert De Laet,Gert Schauwers Pdf

An introduction to the world of network security, this work shows readers how to learn the basics, including cryptography, security policies, and secure network design.

Author : Catherine Paquet
Publisher : Cisco Press
Page : 921 pages
File Size : 46,6 Mb
Release : 2012-11-29
Category : Computers
ISBN : 9780132983310

Get Book

Implementing Cisco IOS Network Security (IINS 640-554) Foundation Learning Guide by Catherine Paquet Pdf

Implementing Cisco IOS Network Security (IINS) Foundation Learning Guide Second Edition Foundation learning for the CCNA Security IINS 640-554 exam Implementing Cisco IOS Network Security (IINS) Foundation Learning Guide, Second Edition, is a Cisco-authorized, self-paced learning tool for CCNA® Security 640-554 foundation learning. This book provides you with the knowledge needed to secure Cisco® networks. By reading this book, you will gain a thorough understanding of how to develop a security infrastructure, recognize threats and vulnerabilities to networks, and mitigate security threats. This book focuses on using Cisco IOS routers to protect the network by capitalizing on their advanced features as a perimeter router, firewall, intrusion prevention system, and site-to-site VPN device. The book also covers the use of Cisco Catalyst switches for basic network security, the Cisco Secure Access Control System (ACS), and the Cisco Adaptive Security Appliance (ASA). You learn how to perform basic tasks to secure a small branch office network using Cisco IOS security features available through web-based GUIs (Cisco Configuration Professional) and the CLI on Cisco routers, switches, and ASAs. Whether you are preparing for CCNA Security certification or simply want to gain a better understanding of Cisco IOS security fundamentals, you will benefit from the information provided in this book. Implementing Cisco IOS Network Security (IINS) Foundation Learning Guide, Second Edition, is part of a recommended learning path from Cisco that includes simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. To find out more about instructor-led training, e-learning, and hands-on instruction offered by authorized Cisco Learning Partners worldwide, please visit www.cisco.com/go/authorizedtraining. -- Develop a comprehensive network security policy to counter threats against information security -- Secure borderless networks -- Learn how to use Cisco IOS Network Foundation Protection (NFP) and Cisco Configuration Professional (CCP) -- Securely implement the management and reporting features of Cisco IOS devices -- Deploy Cisco Catalyst Switch security features -- Understand IPv6 security features -- Plan threat control strategies -- Filter traffic with access control lists -- Configure ASA and Cisco IOS zone-based firewalls -- Implement intrusion prevention systems (IPS) and network address translation (NAT) -- Secure connectivity with site-to-site IPsec VPNs and remote access VPNs This volume is in the Foundation Learning Guide Series offered by Cisco Press®. These guides are developed together with Cisco as the only authorized, self-paced learning tools that help networking professionals build their understanding of networking concepts and prepare for Cisco certification exams. Category: Cisco Certification Covers: CCNA Security IINS exam 640-554

Author : Keith Barker,Scott Morris
Publisher : Cisco Press
Page : 1558 pages
File Size : 51,5 Mb
Release : 2012-07-06
Category : Computers
ISBN : 9780132966061

Get Book

CCNA Security 640-554 Official Cert Guide by Keith Barker,Scott Morris Pdf

>Trust the best selling Official Cert Guide series from Cisco Press to help you learn, prepare, and practice for exam success. They are built with the objective of providing assessment, review, and practice to help ensure you are fully prepared for your certification exam. Master Cisco CCNA Security IINS 640-554 exam topics Assess your knowledge with chapter-opening quizzes Review key concepts with exam preparation tasks This is the eBook edition of the CCNA Security 640-554 Official Cert Guide. This eBook does not include the companion practice exam that comes with the print edition. CCNA Security 640-554 Official Cert Guide presents you with an organized test preparation routine through the use of proven series elements and techniques. “Do I Know This Already?” quizzes open each chapter and enable you to decide how much time you need to spend on each section. Exam topic lists make referencing easy. Chapter-ending Exam Preparation Tasks help you drill on key concepts you must know thoroughly. CCNA Security 640-554 Official Cert Guide, focuses specifically on the objectives for the CCNA Security IINS exam. Expert networking professionals Keith Barker and Scott Morris share preparation hints and test-taking tips, helping you identify areas of weakness and improve both your conceptual knowledge and hands-on skills. Material is presented in a concise manner, focusing on increasing your understanding and retention of exam topics. This eBook comes complete with 90 minutes of video training on CCP, NAT, object groups, ACLs, port security on a Layer 2 switch, CP3L, and zone-based firewalls. See the last page of the eBook file for instructions on downloading the videos. Well-regarded for its level of detail, assessment features, comprehensive design scenarios, and challenging review questions and exercises, this official study guide helps you master the concepts and techniques that will enable you to succeed on the exam the first time. The official study guide helps you master all the topics on the CCNA Security exam, including: Network security concepts Security policies and strategies Network foundation protection (NFP) Cisco Configuration Professional (CCP) Management plane security AAA security Layer 2 security threats IPv6 security Threat mitigation and containment Access Control Lists (ACLs) Network Address Translation (NAT) Cisco IOS zone-based firewalls and ASA firewalls Intrusion prevention and detection systems Public Key Infrastructure (PKI) and cryptography Site-to-site IPsec VPNs and SSL VPNs CCNA Security 640-554 Official Cert Guide is part of a recommended learning path from Cisco that includes simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. To find out more about instructor-led training, e-learning, and hands-on instruction offered by authorized Cisco Learning Partners worldwide, please visit www.cisco.com/go/authorizedtraining.

Author : J. Michael Stewart
Publisher : Jones & Bartlett Publishers
Page : 503 pages
File Size : 51,8 Mb
Release : 2013-07-11
Category : Computers
ISBN : 9781284031683

Get Book

Network Security, Firewalls and VPNs by J. Michael Stewart Pdf

This fully revised and updated second edition provides a unique, in-depth look at the major business challenges and threats that are introduced when an organization's network is connected to the public Internet. It provides a comprehensive explanation of network security basics, including how hackers access online networks and the use of Firewalls and VPNs to provide security countermeasures. Using examples and exercises, this book incorporates hands-on activities to prepare the reader to disarm threats and prepare for emerging technologies and future attacks. Topics covered include: the basics of network security--exploring the details of firewall security and how VPNs operate; how to plan proper network security to combat hackers and outside threats; firewall configuration and deployment and managing firewall security; and how to secure local and internet communications with a VP. --

Author : Bob Vachon
Publisher : Cisco Press
Page : 368 pages
File Size : 47,5 Mb
Release : 2012-05-25
Category : Computers
ISBN : 9780132995740

Get Book

CCNA Security (640-554) Portable Command Guide by Bob Vachon Pdf

All the CCNA Security 640-554 commands in one compact, portable resource Preparing for the latest CCNA® Security exam? Here are all the CCNA Security commands you need in one condensed, portable resource. Filled with valuable, easy-to-access information, the CCNA Security Portable Command Guide is portable enough for you to use whether you’re in the server room or the equipment closet. Completely updated to reflect the new CCNA Security 640-554 exam, this quick reference summarizes relevant Cisco IOS® Software commands, keywords, command arguments, and associated prompts, and offers tips and examples for applying these commands to real-world security challenges. Throughout, configuration examples provide an even deeper understanding of how to use IOS to protect networks. Topics covered include • Networking security fundamentals: concepts, policies, strategies, and more • Securing network infrastructure: network foundations, CCP, management plane and access, and data planes (IPv6/IPv4) • Secure connectivity: VPNs, cryptography, IPsec, and more • Threat control and containment: strategies, ACL threat mitigation, zone-based firewalls, and Cisco IOS IPS • Securing networks with ASA: ASDM, basic and advanced settings, and ASA SSL VPNs Bob Vachon is a professor at Cambrian College. He has held CCNP certification since 2002 and has collaborated on many Cisco Networking Academy courses. He was the lead author for the Academy’s CCNA Security v1.1 curriculum that aligns to the Cisco IOS Network Security (IINS) certification exam (640-554). · Access all CCNA Security commands: use as a quick, offline resource for research and solutions · Logical how-to topic groupings provide one-stop research · Great for review before CCNA Security certification exams · Compact size makes it easy to carry with you, wherever you go · “Create Your Own Journal” section with blank, lined pages allows you to personalize the book for your needs · “What Do You Want to Do?” chart inside front cover helps you to quickly reference specific tasks This book is part of the Cisco Press® Certification Self-Study Product Family, which offers readers a self-paced study routine for Cisco® certification exams. Titles in the Cisco Press Certification Self-Study Product Family are part of a recommended learning program from Cisco that includes simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press.

Author : Harris Andrea
Publisher : Createspace Independent Publishing Platform
Page : 0 pages
File Size : 45,6 Mb
Release : 2014-04-08
Category : Firewalls (Computer security)
ISBN : 1497391903

Get Book

Cisco ASA Firewall Fundamentals - 3rd Edition by Harris Andrea Pdf

Covers the most important and common configuration scenarios and features which will put you on track to start implementing ASA firewalls right away.

Author : Richie Miller
Publisher : Richie Miller
Page : 109 pages
File Size : 43,5 Mb
Release : 2022-11-22
Category : Computers
ISBN : 9781839381324

Get Book

Computer Networking: Network+ Certification Study Guide for N10-008 Exam by Richie Miller Pdf

If you want to PASS the CompTIA Network+ Certification, this book is for you! The Network+ credential is the first certification that many IT professionals ever receive. It has been around for over 25 years at this point and has been awarded to over a million applicants during that time and this matter, because the certification has become well known by IT employers. When you're looking for a job and you have the Network+ after your name, most companies know that that's a real credential. It's also a vendor‑neutral credential, in the sense that it doesn't promote any particular hardware or software vendor and although the exams do recognize and reflect the prominence of Microsoft Windows in the corporate world, they also include limited content on Apple operating systems, Linux, Android, and Chrome OS. Because Apple's operating systems only run on Apple hardware, the exams do cover Macs, iPhones, and iPads. It's fair to say that the CompTIA Network+ exams try to reflect the hardware and software that a technical support professional is likely to see in real life, and that's part of its relevance and appeal. In a nutshell, the Network+ certification is the preferred performance‑based qualifying credential for technical support and IT operational roles, according to the organization that manages it, CompTIA. The Network+ certification focuses on the day‑to‑day work of an IT technician in a business environment. One reason the Network+ certification receives respect by IT employers is that it is accredited by international organizations. The ISO, or International Standards Organization, is a worldwide standard‑setting group headquartered in Geneva, and ANSI, the American National Standards Institute, is the USA's representative to ISO. CompTIA has been accredited by ANSI for compliance with the ISO standard that applies to operating a certification body or organization, and CompTIA must maintain certain quality levels in order to maintain that accreditation. That's a bit of background on CompTIA and the Network+ certification. But who might benefit from this credential? Well, anyone wanting to be hired on by a company that requires it, certainly, but more broadly, anybody pursuing a career in tech support, for example, as a help desk analyst, service desk analyst or a desktop support technician. Field service techs will also find the credential helpful, as will those who aspire to being a network engineer or a documentation specialist in IT. This book will help you prepare for the latest CompTIA Network+ Certification, exam code: N10-008. BUY THIS BOOK NOW AND GET STARTED TODAY! In this book you will discover: · Ethernet Cabling · Coax Cabling and Cable Termination · Fiber Optics · Multiplexing Fiber Optics · Ethernet Fundamentals · CSMA/CD · Duplex and Speed · Ethernet Frame Fundamentals · Ethernet Layer 2 Operation · Spanning Tree Protocol · VLANs and Port Aggregation · How to Route IP Traffic · Address Resolution Protocol · How to Send Ping to Default Gateway · How to Build Routing Tables · Wireless Networking Fundamentals · Wireless 802.11 Protocols · Wireless Ethernet Operation · Wireless Topologies and Management · Wireless Encryption · Cellular Wireless · Layer 2 Devices and Services · Traffic Shaping · Neighbor Device Discovery · Load Balancer Fundamentals · Firewall Fundamentals · VoiP & SCADA Systems · Network Monitoring · Layer 2 Errors · Facilities Monitoring · Collecting Network Monitoring & Baselining BUY THIS BOOK NOW AND GET STARTED TODAY!

Author : Catherine Paquet
Publisher : Cisco Press
Page : 625 pages
File Size : 51,9 Mb
Release : 2009-04-14
Category : Computers
ISBN : 9781587058837

Get Book

Implementing Cisco IOS Network Security (IINS) by Catherine Paquet Pdf

Implementing Cisco IOS Network Security (IINS) is a Cisco-authorized, self-paced learning tool for CCNA® Security foundation learning. This book provides you with the knowledge needed to secure Cisco® routers and switches and their associated networks. By reading this book, you will gain a thorough understanding of how to troubleshoot and monitor network devices to maintain integrity, confidentiality, and availability of data and devices, as well as the technologies that Cisco uses in its security infrastructure. This book focuses on the necessity of a comprehensive security policy and how it affects the posture of the network. You will learn how to perform basic tasks to secure a small branch type office network using Cisco IOS® security features available through the Cisco Router and Security Device Manager (SDM) web-based graphical user interface (GUI) and through the command-line interface (CLI) on Cisco routers and switches. The author also provides, when appropriate, parallels with Cisco ASA appliances. Whether you are preparing for CCNA Security certification or simply want to gain a better understanding of Cisco IOS security fundamentals, you will benefit from the information provided in this book. Implementing Cisco IOS Network Security (IINS) is part of a recommended learning path from Cisco that includes simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. To find out more about instructor-led training, e-learning, and hands-on instruction offered by authorized Cisco Learning Partners worldwide, please visit www.cisco.com/go/authorizedtraining. Develop a comprehensive network security policy to counter threats against information security Configure routers on the network perimeter with Cisco IOS Software security features Configure firewall features including ACLs and Cisco IOS zone-based policy firewalls to perform basic security operations on a network Configure site-to-site VPNs using Cisco IOS features Configure IPS on Cisco network routers Configure LAN devices to control access, resist attacks, shield other network devices and systems, and protect the integrity and confidentiality of network traffic This volume is in the Certification Self-Study Series offered by Cisco Press®. Books in this series provide officially developed self-study solutions to help networking professionals understand technology implementations and prepare for the Cisco Career Certifications examinations.

Author : Rob Cameron,Chris Cantrell,Anne Hemni,Lisa Lorenzin
Publisher : Elsevier
Page : 512 pages
File Size : 54,8 Mb
Release : 2006-12-08
Category : Computers
ISBN : 0080502849

Get Book

Configuring Juniper Networks NetScreen and SSG Firewalls by Rob Cameron,Chris Cantrell,Anne Hemni,Lisa Lorenzin Pdf

Juniper Networks Secure Access SSL VPN appliances provide a complete range of remote access appliances for the smallest companies up to the largest service providers. This comprehensive configuration guide will allow system administrators and security professionals to configure these appliances to allow remote and mobile access for employees. If you manage and secure a larger enterprise, this book will help you to provide remote and/or extranet access for employees, partners, and customers from a single platform. Configure Juniper’s Instant Virtual Extranet (IVE) Install and set up IVE through either the command line interface (CLI) or Web-based console Master the "3 Rs": Realms, Roles, and Resources Realize the potential of the "3Rs" for endpoint security, sign-in policies, and authorization of servers Get Inside both the Windows and Java Versions of Secure Application Manager (SAM) Learn to implement SAM, manage the end-user experience, and troubleshoot SAM in the field Integrate IVE with Terminal Services and Citrix Enable terminal services proxy and configure role options, configure Citrix using a custom ICA, configure terminal services resource policies and profiles, and configure terminal services and Citrix using a hosted Java applet Ensure Endpoint Security Use Host Checker, Cache Cleaner, Secure Virtual Workspace, and IVE/IDP integration to secure your network Manage the Remote Access Needs of Your Organization Configure Web access, file access and telnet/SSH access for remote users and offices Configure Core Networking Components through the System Menu Create clusters, manage virtual systems, and monitor logs, reports, and alerts Create Bullet-Proof Sign-in Policies Create standard and custom sign-in pages for both user and administrator access and Secure Meeting pages Use the IVE for Log-Related Tasks Perform log filtering, log management, syslog exporting, SNMP management, and system resource monitoring and reporting.

Author : Rob Cameron
Publisher : Elsevier
Page : 600 pages
File Size : 49,5 Mb
Release : 2004-12-31
Category : Computers
ISBN : 9780080476780

Get Book

Configuring NetScreen Firewalls by Rob Cameron Pdf

The first book on the market covering the #2 best-selling firewall appliances in the world from NetScreen. This book continues Syngress' history from ISA Server to Check Point to Cisco Pix of being first to market with best-selling firewall books for security professionals. Configuring NetScreen Firewalls is the first book to deliver an in-depth look at the NetScreen firewall product line. It covers all of the aspects of the NetScreen product line from the SOHO devices to the Enterprise NetScreen firewalls. Also covered are advanced troubleshooting techniques and the NetScreen Security Manager. This book offers novice users a complete opportunity to learn the NetScreen firewall appliance. Advanced users will find it a rich technical resource. * NetScreen is the #2 best-selling firewall appliance in the world (behind only Cisco PIX) and there are no competing books. * Covers the materials found on the NetScreen NCSA 5.0 exam. * Syngress firewall books are consistent best-sellers with market-leading books on ISA Server, Cisco PIX, and Check Point Next Generation.

Author : David Zientara
Publisher : Packt Publishing Ltd
Page : 337 pages
File Size : 54,7 Mb
Release : 2018-07-31
Category : Computers
ISBN : 9781789349009

Get Book

Learn pfSense 2.4 by David Zientara Pdf

Install, Configure and Setup different connections with pfSense Key Features Build firewall and routing solutions with PfSense. Learn how to create captive portals, how to connect Pfsense to your https environment and so on. Practical approach towards building firewall solutions for your organization Book Description As computer networks become ubiquitous, it has become increasingly important to both secure and optimize our networks. pfSense, an open-source router/firewall, provides an easy, cost-effective way of achieving this – and this book explains how to install and configure pfSense in such a way that even a networking beginner can successfully deploy and use pfSense. This book begins by covering networking fundamentals, deployment scenarios, and hardware sizing guidelines, as well as how to install pfSense. The book then covers configuration of basic services such as DHCP, DNS, and captive portal and VLAN configuration. Careful consideration is given to the core firewall functionality of pfSense, and how to set up firewall rules and traffic shaping. Finally, the book covers the basics of VPNs, multi-WAN setups, routing and bridging, and how to perform diagnostics and troubleshooting on a network. What you will learn Install pfSense Configure additional interfaces, and enable and configure DHCP Understand Captive portal Understand firewalls and NAT, and traffic shaping Learn in detail about VPNs Understand Multi-WAN Learn about routing and bridging in detail Understand the basics of diagnostics and troubleshooting networks Who this book is for This book is towards any network security professionals who want to get introduced to the world of firewalls and network configurations using Pfsense. No knowledge of PfSense is required

Author : Dan Bendell
Publisher : Elsevier
Page : 600 pages
File Size : 43,6 Mb
Release : 2006-05-25
Category : Computers
ISBN : 0080489664

Get Book

Configuring SonicWALL Firewalls by Dan Bendell Pdf

SonicWALL firewalls are the number 3 in sales worldwide in the security appliance market space as of 2004. This accounts for 15% total market share in the security appliance sector. The SonicWALL firewall appliance has had the largest annual growth in the security appliance sector for the last two years. This is the first book on the market covering the #3 best-selling firewall appliances in the world from SonicWALL. This book continues Syngress' history from ISA Server to Check Point to Cisco Pix of being first to market with best-selling firewall books for security professionals. Configuring SonicWALL Firewalls is the first book to deliver an in-depth look at the SonicWALL firewall product line. It covers all of the aspects of the SonicWALL product line from the SOHO devices to the Enterprise SonicWALL firewalls. Also covered are advanced troubleshooting techniques and the SonicWALL Security Manager. This book offers novice users a complete opportunity to learn the SonicWALL firewall appliance. Advanced users will find it a rich technical resource. * First book to deliver an in-depth look at the SonicWALL firewall product line * Covers all of the aspects of the SonicWALL product line from the SOHO devices to the Enterprise SonicWALL firewalls * Includes advanced troubleshooting techniques and the SonicWALL Security Manager

Author : Alexandre M.S.P. Moraes
Publisher : Cisco Press
Page : 1096 pages
File Size : 54,8 Mb
Release : 2011-06-06
Category : Computers
ISBN : 9781587141119

Get Book

Cisco Firewalls by Alexandre M.S.P. Moraes Pdf

Cisco Firewalls Concepts, design and deployment for Cisco Stateful Firewall solutions ¿ “ In this book, Alexandre proposes a totally different approach to the important subject of firewalls: Instead of just presenting configuration models, he uses a set of carefully crafted examples to illustrate the theory in action.¿A must read!” —Luc Billot, Security Consulting Engineer at Cisco ¿ Cisco Firewalls thoroughly explains each of the leading Cisco firewall products, features, and solutions, and shows how they can add value to any network security design or operation. The author tightly links theory with practice, demonstrating how to integrate Cisco firewalls into highly secure, self-defending networks. Cisco Firewalls shows you how to deploy Cisco firewalls as an essential component of every network infrastructure. The book takes the unique approach of illustrating complex configuration concepts through step-by-step examples that demonstrate the theory in action. This is the first book with detailed coverage of firewalling Unified Communications systems, network virtualization architectures, and environments that include virtual machines. The author also presents indispensable information about integrating firewalls with other security elements such as IPS, VPNs, and load balancers; as well as a complete introduction to firewalling IPv6 networks. Cisco Firewalls will be an indispensable resource for engineers and architects designing and implementing firewalls; security administrators, operators, and support professionals; and anyone preparing for the CCNA Security, CCNP Security, or CCIE Security certification exams. ¿ Alexandre Matos da Silva Pires de Moraes, CCIE No. 6063, has worked as a Systems Engineer for Cisco Brazil since 1998 in projects that involve not only Security and VPN technologies but also Routing Protocol and Campus Design, IP Multicast Routing, and MPLS Networks Design. He coordinated a team of Security engineers in Brazil and holds the CISSP, CCSP, and three CCIE certifications (Routing/Switching, Security, and Service Provider). A frequent speaker at Cisco Live, he holds a degree in electronic engineering from the Instituto Tecnológico de Aeronáutica (ITA – Brazil). ¿ ·¿¿¿¿¿¿¿ Create advanced security designs utilizing the entire Cisco firewall product family ·¿¿¿¿¿¿¿ Choose the right firewalls based on your performance requirements ·¿¿¿¿¿¿¿ Learn firewall¿ configuration fundamentals and master the tools that provide insight about firewall operations ·¿¿¿¿¿¿¿ Properly insert firewalls in your network’s topology using Layer 3 or Layer 2 connectivity ·¿¿¿¿¿¿¿ Use Cisco firewalls as part of a robust, secure virtualization architecture ·¿¿¿¿¿¿¿ Deploy Cisco ASA firewalls with or without NAT ·¿¿¿¿¿¿¿ Take full advantage of the classic IOS firewall feature set (CBAC) ·¿¿¿¿¿¿¿ Implement flexible security policies with the Zone Policy Firewall (ZPF) ·¿¿¿¿¿¿¿ Strengthen stateful inspection with antispoofing, TCP normalization, connection limiting, and IP fragmentation handling ·¿¿¿¿¿¿¿ Use application-layer inspection capabilities built into Cisco firewalls ·¿¿¿¿¿¿¿ Inspect IP voice protocols, including SCCP, H.323, SIP, and MGCP ·¿¿¿¿¿¿¿ Utilize identity to provide user-based stateful functionality ·¿¿¿¿¿¿¿ Understand how multicast traffic is handled through firewalls ·¿¿¿¿¿¿¿ Use firewalls to protect your IPv6 deployments ¿ This security book is part of the Cisco Press Networking Technology Series. Security titles from Cisco Press help networking professionals secure critical data and resources, prevent and mitigate network attacks, and build end-to-end, self-defending networks.